Security News > 2020 > October > StackRox Releases Open Source Tool for Finding Kubernetes Misconfigurations
Container and Kubernetes security company StackRox on Wednesday announced the release of KubeLinter, an open source tool designed to help users identify misconfigurations in Kubernetes deployments.
KubeLinter is a static analysis tool that checks YAML files, which store configuration data for Kubernetes applications, to ensure that security best practices are followed.
KubeLinter, which is a command-line tool, aims to address this by automating the process of checking YAML files and Helm charts before they are deployed in a Kubernetes cluster.
"We developed KubeLinter to provide the Kubernetes community with a better, more automated way to identify misconfigurations and deviations from best practices that limit organizations from realizing the full potential of cloud-native applications," said Ali Golshan, StackRox co-founder and CTO. "Releasing KubeLinter as an open source tool will ultimately help Kubernetes users create hardened environments that are increasingly resistant to the inherent risks generated by the frequent configuration changes common in development practices."
The KubeLinter source code is available on GitHub and the Kubernetes community has been invited to contribute to the tool, which is currently described as being in a very early stage of development.