cloudbeat
cloudbeat copied to clipboard
elastic
Analyzing Cloud Security Posture
While I am deploying Cloudbeat through https://github.com/elastic/cloudbeat/blob/main/dev-docs/Cloudbeat-Deployment.md#amazon-elastic-kubernetes-service-eks and in kustomizeEksOverlay := "deploy/kustomize/overlays/cloudbeat-eks" folder I have edited my kibana host, elasticsearch hosts, password, username as like setup.kibana: host: "http://:5601" output.elasticsearch: hosts:...
### Summary of your changes **Clean trivy cache after each cycle** Trivy [artifact.NewRunner](https://github.com/aquasecurity/trivy/blob/main/pkg/commands/artifact/run.go#L116) calls [initCache](https://github.com/aquasecurity/trivy/blob/main/pkg/commands/artifact/run.go#L341). Depending on the provided configuration, the latter (initCache) could either return a runner or the...
**Describe the bug** Trivy uses a local file (bbolt db) as a cache in the `/tmp` directory (`/tmp/trivy/fanal/fanal.db`) that always increases in size with each cycle. This results in the...
**Motivation** latest release the workflow [failed](https://github.com/elastic/cloudbeat/actions/runs/8709394933) to complete due to a git error where the workflow assumes it'll be the only one updating hermit, but hermit was updated manually in...
**Describe the bug** UpdateCLI workflows seem flaky and fail most of the time they run. We should investigate why and how to improve that. ~Optionally, we could consider removing the...
**Is your feature request related to a problem? Please describe.** As an operator of Kubernetes on multiple platforms (AWS, Self-managed, GCP, Azure, etc...). I'd like to maintain a single Elastic...
**Motivation** Following a fearture request from @BenB196 https://github.com/elastic/cloudbeat/issues/2128 **Definition of done** - [ ] Add the `conditions` vars into the integration manifest, as seen [here](https://github.com/elastic/integrations/blob/9817e962729452e6ba164ebe1afd96e3740ddcc3/packages/kubernetes/manifest.yml#L40-L44), for all of our integrations....
### Summary of your changes 1. adds rate limiting to the asset inventory client. our current usage is only for `ListAssets` 2. retries requests made by `ListAssets` client whenever they...
### Summary of your changes This PR introduces a new workflow called Test Agent Compatibility. The workflow verifies the latest Elasticsearch version against agents starting from version 8.11. It dynamically...
- [x] adds a Deployment Manager template to and a script to deploy it - [ ] adds a CI test to verify deployment of service account is useable ![Screenshot...