Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

vote: add sboschman as approver for k8saudit-gke, and add the plugin to the registry #437

Merged
merged 1 commit into from
Mar 25, 2024
Merged

vote: add sboschman as approver for k8saudit-gke, and add the plugin to the registry #437

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -81,6 +81,7 @@ These comments and the text between them should not be edited by hand -->
| [box](https://github.com/an1245/falco-plugin-box/) | **Event Sourcing** <br/>ID: 15 <br/>`box` <br/>**Field Extraction** <br/> `box` | Falco plugin providing basic runtime threat detection and auditing logging for Box <br/><br/> Authors: [Andy](https://github.com/an1245/falco-plugin-box/issues) <br/> License: Apache-2.0 |
| test | **Event Sourcing** <br/>ID: 999 <br/>`test` | This ID is reserved for source plugin development. Any plugin author can use this ID, but authors can expect events from other developers with this ID. After development is complete, the author should request an actual ID <br/><br/> Authors: N/A <br/> License: N/A |
| [k8smeta](https://github.com/falcosecurity/plugins/tree/master/plugins/k8smeta) | **Field Extraction** <br/> `syscall` | Enriche Falco syscall flow with Kubernetes Metadata <br/><br/> Authors: [The Falco Authors](https://falco.org/community) <br/> License: Apache-2.0 |
| [k8saudit-gke](https://github.com/falcosecurity/plugins/tree/master/plugins/k8saudit-gke) | **Event Sourcing** <br/>ID: 16 <br/>`k8s_audit` <br/>**Field Extraction** <br/> `k8s_audit` | Read Kubernetes Audit Events from GKE Clusters <br/><br/> Authors: [The Falco Authors](https://falco.org/community) <br/> License: Apache-2.0 |

<!-- REGISTRY:TABLE -->

Expand Down
2 changes: 2 additions & 0 deletions plugins/k8saudit-gke/OWNERS
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
approvers:
- sboschman
Comment on lines +1 to +2
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

As per our governance adding a maintainer requires a majority vote

Eligible voters are @falcosecurity/plugins-maintainers

So

/hold until we get the majority or a week has passed

Ofc, +1 from me 👍

24 changes: 24 additions & 0 deletions registry.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -402,3 +402,27 @@ plugins:
extraction:
supported: true
sources: [syscall]
- name: k8saudit-gke
description: Read Kubernetes Audit Events from GKE Clusters
authors: The Falco Authors
contact: https://falco.org/community
url: https://github.com/falcosecurity/plugins/tree/master/plugins/k8saudit-gke
rules_url: https://github.com/falcosecurity/plugins/tree/master/plugins/k8saudit-gke/rules
license: Apache-2.0
signature:
cosign:
certificate-oidc-issuer: https://token.actions.githubusercontent.com
certificate-identity-regexp: https://github.com/falcosecurity/plugins/
keywords:
- audit
- audit-log
- audit-events
- kubernetes
- gke
capabilities:
sourcing:
supported: true
id: 16
source: k8s_audit
extraction:
supported: true
Loading