It’s a first tool for testing if Kubernetes is deployed securely as defined in Kubernetes Hardening Guidance by to NSA and CISA.See the website
Description
Kubescape scans K8s clusters, YAML files, and HELM charts, and detect misconfigurations and software vulnerabilities at early stages of the CI/CD pipeline and provides a risk score instantly and risk trends over time. Kubescape integrates natively with other DevOps tools, including Jenkins, CircleCI and Github workflows.
Related tools (DevOps)
A utility to help you write tests against structured configuration data
Automated tests for your infrastructure code.
use OS-level virtualization to deliver software in packages called containers