From: Cédric Ollivier <cedric.ollivier@orange.com>
Date: Fri, 14 Aug 2020 09:32:07 +0000 (+0200)
Subject: Pin latest versions from security tools
X-Git-Url: https://gerrit.opnfv.org/gerrit/gitweb?a=commitdiff_plain;h=f2243f5c11490bdfda0437a8894edaa528bf5ab5;p=functest-kubernetes.git

Pin latest versions from security tools

It selects kube-bench and kube-hunter 0.3.1.

Change-Id: Icb85f3d0d88056370500ec827ef77c215740e5e4
Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com>
(cherry picked from commit 6b8384b57a0bfc200c15ed9ded71544c33a27e81)
---

diff --git a/functest_kubernetes/security/kube-bench.yaml b/functest_kubernetes/security/kube-bench.yaml
index ec42ba16..38a2ef60 100644
--- a/functest_kubernetes/security/kube-bench.yaml
+++ b/functest_kubernetes/security/kube-bench.yaml
@@ -12,7 +12,7 @@ spec:
       hostPID: true
       containers:
         - name: kube-bench
-          image: aquasec/kube-bench:latest
+          image: aquasec/kube-bench:0.3.1
           command: ["kube-bench"]
           volumeMounts:
             - name: var-lib-etcd
diff --git a/functest_kubernetes/security/kube-hunter.yaml b/functest_kubernetes/security/kube-hunter.yaml
index ce88c062..b4452a57 100644
--- a/functest_kubernetes/security/kube-hunter.yaml
+++ b/functest_kubernetes/security/kube-hunter.yaml
@@ -1,3 +1,4 @@
+---
 apiVersion: batch/v1
 kind: Job
 metadata:
@@ -7,7 +8,7 @@ spec:
     spec:
       containers:
       - name: kube-hunter
-        image: aquasec/kube-hunter
+        image: aquasec/kube-hunter:0.3.1
         command: ["python", "kube-hunter.py"]
         args: ["--pod"]
       restartPolicy: Never