Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

1131 k8s basic #1133

Closed
wants to merge 6 commits into from
Closed

1131 k8s basic #1133

wants to merge 6 commits into from

Conversation

PavelJurka
Copy link
Contributor

@PavelJurka PavelJurka commented Jul 1, 2024

Related Issue:

#1131

Description of changes:

This issue is about to extend OCSF schema by Kubernetes mapping. The extension should be provided as a separated extension like the current Windows and Linux.

After data analyses the topology copies K8s API - the objects are split by type (workload, cluster resources etc.) with common shared object. Each objects leads to asset and usage is via discovery classes. The hierarchy is defined as bottom-up.

The basic elements defined by this issue:

Cluster - the root element object k8s_cluster - used by **K8s Cluster Inventory Info **
Workload - object of type k8s_workload - used by - K8s Workload Inventory Info
Cluster resource - k8s_cluster_resource used by K8s Cluster resource Inventory Info
Container - k8s_container used by K8s Container Inventory Info

Delete once you have confirmed the following:

TBD

  1. Did you add a single line summary of changes to Unreleased section in the CHANGELOG.md file?
  2. Have you followed the contribution guidelines?
  3. Did you run a local instance of the ocsf-server and ensure it ran without any errors/warnings?
  4. Is your PR title in sync with the description?

@PavelJurka PavelJurka closed this Jul 2, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant