This project continuously analyzes the global security posture of Helm charts.
It's on its very early stages, expect some inaccuracies and fast evolution.
It uses Artifact Hub as a source for a list of available Helm charts. It doesn't stress that projects resources as a static list of charts is downloaded in a single query.
Other sources can be added when they are available in the future.
For evaluation, it uses:
- psa-checker: A cli tool for static analysis of Pod Security Standard on files. Create by the same author as this project.
- badrobot: A cli tool to evaluation Kubernetes operators for essential security practices.
More tools and evaluations will be added very soon.
Visit this page to see the generated documentation for results on the evaluation of all charts:
A WIP Jupyter Notebook will provide results that you can interact with in the near future, check its state here: