Cluster vulnerability scanning

In this page we describe how to install and operate Kubescape vulnerability scanning in your Kubernetes cluster

Prerequisites

Vulnerability scanning

Kubescape vulnerability scanner is working in the background.

Kubescape vulnerability scanner scans the container images in the cluster right after the first installation and uploads the results to the Kubescape SaaS. The results can be viewed at https://portal.armo.cloud/vulnerability-scan

The scanner is triggered by a CronJob called armo-scan-scheduler, by default the scanner is triggered once every midnight. In order to customize the scan frequency, you can update this armoScanScheduler.scanSchedule="0 0 * * *" value to the required value.

You can also disable the default creation of the cromJob by setting the value to false: armoScanScheduler.enabled=false


Did this page help you?