github.com/khulnasoft-lab/kube-bench@v0.2.1-0.20240330183753-9df52345ae58/job-iks.yaml (about) 1 --- 2 apiVersion: batch/v1 3 kind: Job 4 metadata: 5 name: kube-bench 6 spec: 7 template: 8 spec: 9 hostPID: true 10 containers: 11 - name: kube-bench 12 image: docker.io/khulnasoft/kube-bench:latest 13 command: 14 ["kube-bench", "run", "--targets", "node", "--version", "1.20"] 15 volumeMounts: 16 - name: var-lib-kubelet 17 mountPath: /var/lib/kubelet 18 readOnly: true 19 - name: etc-systemd 20 mountPath: /etc/systemd 21 readOnly: true 22 - name: etc-kubernetes 23 mountPath: /etc/kubernetes 24 readOnly: true 25 restartPolicy: Never 26 volumes: 27 - name: var-lib-kubelet 28 hostPath: 29 path: "/var/lib/kubelet" 30 - name: etc-systemd 31 hostPath: 32 path: "/lib/systemd" 33 - name: etc-kubernetes 34 hostPath: 35 path: "/etc/kubernetes" 36 - name: usr-bin 37 hostPath: 38 path: "/usr/bin"