This repo aim to enrich the functionality of starboard.
The problem is the scan report display, see the picture upper, two way to check the report;
- With CLI command
starboard get reportto generate
- Install software
Octantoutside the cluster then connect to the cluster to get a panoramic view of whole cluster
The former is not possible in a cluster which from cloud provider.
And the latter is not follow the insight of
From the perspective of
devsecops, we believe a application should be self-governing, means after update/installed(by
gitops maybe), there should be a specific report for the application avaiabled for administrator, just for the application.
So, the repo will be part of
application‘s artifact, act as a security/compliance reporter after every upgrade.