Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

LFX: Add Kubearmor project for March - May term 2024 #1133

Merged
merged 2 commits into from
Jan 24, 2024
Merged

LFX: Add Kubearmor project for March - May term 2024 #1133

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
9e91775
LFX: Add Kubearmor project for March - May term 2024
PrimalPimmy Jan 24, 2024
c4b73f6
Merge branch 'main' into kubearmor
aliok Jan 24, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 38 additions & 0 deletions programs/lfx-mentorship/2024/01-Mar-May/project_ideas.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -218,6 +218,44 @@
- Mehant Kammakomati (@kmehant, [email protected])
- Upstream Issue: https://github.com/konveyor/move2kube/issues/1132

### Kubearmor

#### Kubearmor Kata Container Support

- Description: Kata Containers is an open source community working to build a secure container runtime with lightweight virtual machines that feel and perform like containers, but provide stronger workload isolation using hardware virtualization technology as a second layer of defense.
- Expected Outcome: KubeArmor natively protecting Kata containers with required Integration.
- Recommended Skills: Go, Kubernetes, Linux
- Mentor(s):
- Barun Acharya (@daemon1024, [email protected])
- Prashant Mishra (@primalpimmy, [email protected])
- Rudraksh Pareek (@DelusionalOptimist, [email protected] )
- Upstream Issue: https://github.com/kubearmor/KubeArmor/issues/1340

#### Leverage OCI Hooks for Container Events

- Description: Use OCI hooks and get events in context to container start/stop: Currently KubeArmor mounts docker/containerd/crio UNIX domain socket file in KubeArmor to watch for container events. The aim is to use OCI hooks for getting such container events.
- Expected Outcome: Eliminate exposing docker/containerd/crio UNIX domain sockets inside a container.
- Recommended Skills: Go, Kubernetes, Linux
- Mentor(s):
- Barun Acharya (@daemon1024, [email protected])
- Akshay Gaikwad (@akshay196, [email protected])
- Rudraksh Pareek (@DelusionalOptimist, [email protected] )
- Upstream Issue: https://github.com/kubearmor/KubeArmor/issues/1390

#### Dashboards for application behavior and KubeArmor state

- Description: For showing an application's behaviour, we'd like to have a Kibana/Grafana dashboard. We have existing integrations for
visualizing alerts with Elastic/Loki and we can use them for creating these.
We want to leverage the above for creating a plugin which will allow users to see an application's behavior based on visibility logs sent by KubeArmor.
- Expected Outcome: A kubernetes dashboard setup that also has the app behaviours described.
- Recommended Skills: Grafana, Javascript, Go, Kubernetes, Linux
- Mentor(s):
- Barun Acharya (@daemon1024, [email protected])
- Prashant Mishra (@primalpimmy, [email protected])
- Rudraksh Pareek (@DelusionalOptimist, [email protected] )
- Anurag Kumar (@kranurag7, [email protected])
- Upstream Issue: https://github.com/kubearmor/KubeArmor/issues/1390

### KubeVela

#### Support versioning for definitions
Expand Down