Chef Ideas

We believe that the best way to build software is to do it in close collaboration with the people who use it. We invite you to submit your ideas using the form below. Please be sure to include the problem for which you are solving and the benefits of implementing the idea.

We do our best to implement as many Ideas as we can. Our Product team will evaluate all submitted ideas in a timely manner and will disposition each into one of the following categories: will integrate into the product roadmap, further research is needed, unlikely to implement.

Thanks for collaborating with us!

Node Manager for Kubernettes/Docker to enumerate and scan containers

A large Swiss bank has asked for the ability to scan docker hosts and Kubernettes clusters.

They have already seen this article about scanning docker containers https://lollyrock.com/posts/inspec-for-docker/ and would like to be able to run scheduled scans from A2 against their full fleet

We get bonus points if we can detect things inside those containers and dynamically select profiles to be used in the scan (eg. A container running Tomcat and MySQL should run the Tomcat and MySQL profiles dynamically).

The initial MVP would likely just offer the ability to enumerate and scan the containers with static profiles.

  • Richard Nixon
  • Feb 4 2020
  • Planning Backlog
Chef Compliance
  • Attach files
  • +1

Related ideas