Helm Chart Scanning

When scanning directories and/or Git repositories, Kubescape identifies directories that contain Helm charts automatically.

Whenever a Helm chart is detected, Kubescape will render the chart templates, using the values.yaml file in the chart's root directory. Then, the rendered manifests will be scanned by Kubescape.

Currently, submitting the results to the Kubescape Cloud Platform is only available when scanning a Git repository.

For usage information, check out Repository scanning.

Limitation

  • At the moment it is not possible to override the Values which are used for the Helm template rendering. Kubescape will not be able to scan Helm charts that are missing default values.