Cluster vulnerability scanning

In this page we describe how to install and operate Kubescape vulnerability scanning in your Kubernetes cluster

Prerequisites

Installing ARMO in your cluster

See Installation of Kubescape in cluster

Vulnerability scanning

Kubescape vulnerability scanner is working in the background.

It starts to scan the container images in the cluster right after the first installation and upload results to the Kubescape SaaS. The results can be viewed at https://portal.armo.cloud/vulnerability-scan

The scanner is triggered by a CronJob called armo-scan-scheduler, by default (if the Helm value scanSchedule was not overwritten) the scanner is triggered once every midnight (0 0 * * *). You can update this scanSchedule Helm value to customize the scan frequency.


Did this page help you?