github.com/khulnasoft-lab/kube-bench@v0.2.1-0.20240330183753-9df52345ae58/job-gke.yaml (about) 1 --- 2 apiVersion: batch/v1 3 kind: Job 4 metadata: 5 name: kube-bench 6 spec: 7 template: 8 spec: 9 hostPID: true 10 containers: 11 - name: kube-bench 12 image: docker.io/khulnasoft/kube-bench:latest 13 command: 14 [ 15 "kube-bench", 16 "run", 17 "--targets", 18 "node,policies,managedservices", 19 "--benchmark", 20 "gke-1.2.0", 21 ] 22 volumeMounts: 23 - name: var-lib-kubelet 24 mountPath: /var/lib/kubelet 25 readOnly: true 26 - name: etc-systemd 27 mountPath: /etc/systemd 28 readOnly: true 29 - name: etc-kubernetes 30 mountPath: /etc/kubernetes 31 readOnly: true 32 - name: home-kubernetes 33 mountPath: /home/kubernetes 34 readOnly: true 35 restartPolicy: Never 36 volumes: 37 - name: var-lib-kubelet 38 hostPath: 39 path: "/var/lib/kubelet" 40 - name: etc-systemd 41 hostPath: 42 path: "/etc/systemd" 43 - name: etc-kubernetes 44 hostPath: 45 path: "/etc/kubernetes" 46 - name: home-kubernetes 47 hostPath: 48 path: "/home/kubernetes"