Skip to main content

Run Security Scan on Cluster

The Run Security Scan on Cluster feature empowers users to assess the security health of their Kubernetes clusters. This capability leverages Kubescape, an open-source security scanning tool, to evaluate multiple security parameters and generate a comprehensive report, including a security score and compliance score.

Run Security Scan Option in Cluster Actions

Key Functions

  • Security Score
    A numeric score indicating the overall security posture of your cluster. Higher scores reflect stronger security configurations.

  • Compliance Score
    Measures how well your cluster adheres to security policies and best practices.

  • Cluster Scanning
    Evaluates critical security parameters such as:

    • Access control configurations
    • Control plane security
    • Secrets management
    • Workload security settings

  • Cluster Creation & Import
    Scans can be run on both newly created clusters and imported clusters.

  • Security Insights
    After scanning, you receive a detailed report highlighting vulnerabilities, failed tests, and their severity.

How to Use the Feature

  1. Access the Cluster Tab

    • Navigate to the Clusters section from the main dashboard.

  2. Select the Cluster

    • From the list of available clusters, click on the cluster you wish to scan.

  3. Initiate Security Scan

    • In the top-right corner, click the Cluster Actions dropdown.
    • Select Run Security Scan from the menu.

  4. View the Results

    • Once the scan completes, review the Security Score and Compliance Score displayed in the results.
    • Examine the detailed breakdown of security checks, including:
      • Which tests failed
      • Severity levels (e.g., Low, Critical)
      • Specific remediation recommendations

Tip: Regularly running security scans helps maintain continuous compliance and strengthens your cluster's security posture.

Benefits

  • Proactive Security
    Identify and address vulnerabilities before they escalate into critical issues.

  • Compliance Assurance
    Validate that your clusters meet required security standards and best practices.

  • Actionable Insights
    Gain clear, detailed guidance to remediate findings efficiently.

  • Seamless Integration
    Scan any cluster—new or imported—directly from the platform for ongoing protection.