Please enable JavaScript in your browser!
Misconfiguration control of images
Kaspersky Container Security allows detecting misconfigurations in configuration files using the configuration file scanner. This scanner can scan images, file systems, and repositories that contain IaC files (for example, Terraform, CloudFormation, Azure ARM templates, Helm Chart and Dockerfile packages).
Kaspersky Container Security scans the following configuration files:
Configuration files of Kubernetes objects . Pod ReplicaSet ReplicationController Deployment DeploymentConfig StatefulSet DaemonSet CronJob Job Services ConfigMaps Roles and СlusterRoles rights and commands ClusterRoleBindings and RoleBindings Network policy (ingress and egress connections) Configuration files of cluster components. Configuration files of images. Configuration files of Amazon cloud environment services .Amazon IAM policies API Gateway Amazon Athena Amazon CloudFront Amazon CloudTrail Amazon CloudWatch Amazon CodeBuild Amazon Config Amazon DocumentDB databases Amazon DynamoDB Accelerator Amazon Elastic Compute Cloud AWS Elastic Container Registry Amazon Elastic Container Service Amazon Elastic File System Amazon Elastic Kubernetes Service Amazon ElastiCache Amazon Elasticsearch Amazon Elastic Load Balancing Amazon Elastic MapReduce Amazon Identity and Access Management. Amazon Kinesis Amazon Key Management Service Amazon Lambda Amazon MQ Broker Amazon Managed Streaming for Apache Kafka Amazon Neptune Amazon Relational Database Service Amazon Redshift Amazon Simple Storage Service Amazon Serverless Application Model Amazon Simple Notification Service Amazon Simple Queue Service Amazon Secrets Manager Amazon Workspaces
Configuration files of Azure cloud environment services .Azure App Service Azure Compute Azure Container Service Azure SQL Database Azure Data Factory Azure Data Lake Azure Key Vault Azure Monitor Services responsible for the network interaction of Azure Azure Security Center Azure Storage Azure Synapse Analytics Azure IAM policies Configuration files of the DigitalOcean cloud environment. Configuration files of the ApacheCloudStack cloud environment. Configuration files of Terraform GitHub Provider. Configuration files of Google cloud environment services .Google BigQuery Google Compute Engine Google Cloud DNS Google Cloud IAM policies Google Cloud Key Management Service Google Cloud SQL Google Cloud Storage Configuration files of Nifcloud Provider .Computing DNS NAS Network Rdb SSL certificates Configuration files of OpenStack .Configuration files of Oracle Compute Cloud. The following table lists the types of configuration files and configuration files formats that Kaspersky Container Security supports.
Types and formats of configuration files
File type
File format
Kubernetes
*.yml, *.yaml, *.json
Docker
Dockerfile, Containerfile
Terraform
*.tf, *.tf.json, *.tfvars
Terraform Plan
tfplan, *.tfplan, *.json
CloudFormation
*.yml, *.yaml, *.json
Azure ARM Template
*.json
Helm
*yaml, *.tpl, *.tar.gz
YAML
*.yaml, *.yml
JSON
*.json
Page top