Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Score documentation #5

Open
naseemkullah opened this issue Sep 5, 2018 · 5 comments
Open

Score documentation #5

naseemkullah opened this issue Sep 5, 2018 · 5 comments

Comments

@naseemkullah
Copy link

Hello,

After following recommendations from kubesec, most of my deployments get a score of 9 without any further recommendations, however there is a deployment that gets a score of 12.
Without extra notes, I cannot determine the difference between the deployments that score 9 and those that score 12.

Thank you!
@stefanprodan
Copy link
Member

@sublimino is there any documentation available on how the score gets computed

@sublimino
Copy link
Member

It's currently "Andy's Kubernetes threat model", so certainly deserves scrutiny.

It's internally modelled as (+/-ve) points, but that could be renamed riskScore (or riskModifier etc) - any preference @stefanprodan? If we agree a key name I'll expose it in the response.

@stefanprodan
Copy link
Member

riskScore sounds good to me :)

@naseemkullah
Copy link
Author

naseemkullah commented Sep 5, 2018
edited
Loading

May I suggest secScore ? Seeing that the more points you score the less risk you have, the more secure your resource is.

@sublimino
Copy link
Member

Good point @naseemkullah! Will have a muse before I do it...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@sublimino @stefanprodan @naseemkullah