feat: audit scanner docs. #199

jvanz · 2023-07-11T13:13:59Z

Description

Adds documentation about the new Kubewarden component, the Audit Scanner. The docs explain what is it, how to use it and why it is useful.

Fix #198

netlify · 2023-07-11T13:14:04Z

❌ Deploy Preview for silly-bunny-8cedd0 failed.

Name	Link
🔨 Latest commit	`7596757`
🔍 Latest deploy log	https://app.netlify.com/sites/silly-bunny-8cedd0/deploys/64ff11241c9d9b0008004605

viccuad · 2023-07-11T13:46:55Z

Converted into draft, hope it's ok. Could we re-open this PR against a feat-audit feature branch? it may be a bit until we merge this, and we may have big changes to the docs structure in the meantime from reviews or new colleagues.

docs/explanations/audit-scanner.md

docs/howtos/audit-scanner.md

docs/explanations/audit-scanner.md

flavio · 2023-07-20T08:42:10Z

@jordojordo I'm going crazy trying to understand why netlify cannot build the preview website anymore. Looking at the logs there's an error while executing yarn build. However, everything works fine locally.

Can you please take a look, maybe we are not pushing some special yarn/packages.json file... it looks like there's a dependency missing

jordojordo · 2023-07-20T12:12:44Z

@flavio It looks to me like there is are some conflicting packages - I believe you can remove @mdx-js/react from the dependencies list as this comes from @docusaurus/core -> @docusaurus/mdx-loader -> @mdx-js/js as a Dev Dependency.
I tested locally with removing that package and updating the lockfile and everything runs, builds, and serves correctly.
If that doesn't work you can try to add @babel/helper-get-function-arity directly, but that may lead to other package issues.

docs/writing-policies/metadata.md

docs/explanations/audit-scanner.md

viccuad

LGTM, but CI is not building it again :/.

I would be ok with pushing this branch to a feature branch as it is.

jhkrug

Some very minor suggestions while reading through.

docs/quick-start.md

docs/writing-policies/metadata.md

viccuad · 2023-07-25T15:07:02Z

The PR is ready, but shouldn't be merged directly to main (and the changes made public) as the feature has not been released yet.
Moving to blocked.

docs/howtos/audit-scanner.md

Adds documentation about the new Kubewarden component, the Audit Scanner. The docs explain what is it, how to use it and why it is useful. Signed-off-by: José Guilherme Vanz <[email protected]>

This commit adds documentation explaining the purpose and usage of the Kubewarden metadata file. It covers the enablement of background audit checks, defining Kubernetes resources for policies, specifying policy types (mutating or non-mutating), and the rules for targeting resource types. Signed-off-by: José Guilherme Vanz <[email protected]>

Co-authored-by: John Krug <[email protected]> Signed-off-by: Víctor Cuadrado Juan <[email protected]>

jvanz · 2023-09-06T13:46:33Z

@kubewarden/kubewarden-documentation @kubewarden/kubewarden-developers I've added another paragraph in the explanation docs describing the endpoint the audit scanner will send the fake request and mentioning that tracing information is collected and the usual validation endpoint.

viccuad · 2023-09-08T10:02:42Z

Flavio requested splitting this into subsections, as the current page is quite long.

Signed-off-by: Víctor Cuadrado Juan <[email protected]>

viccuad · 2023-09-08T10:23:46Z

@kubewarden/kubewarden-documentation @kubewarden/kubewarden-developers I've added another paragraph in the explanation docs describing the endpoint the audit scanner will send the fake request and mentioning that tracing information is collected and the usual validation endpoint.

I couldn't find any tracing mentions, but maybe I'm using the compare feature of GH incorrectly.
Just in case, can you point me to the changed paragraph?

jvanz · 2023-09-08T12:07:16Z

@kubewarden/kubewarden-documentation @kubewarden/kubewarden-developers I've added another paragraph in the explanation docs describing the endpoint the audit scanner will send the fake request and mentioning that tracing information is collected and the usual validation endpoint.

I couldn't find any tracing mentions, but maybe I'm using the compare feature of GH incorrectly. Just in case, can you point me to the changed paragraph?

It's the last paragraph of the # Audit Scanner section (the first section)

Splits the audit scanner docs into smaller pages and organize them inside the subtopic of the explanation docs. Signed-off-by: José Guilherme Vanz <[email protected]>

jvanz · 2023-09-08T14:32:07Z

@kubewarden/kubewarden-documentation @flavio I've broken the explanation docs into smaller pages. Please, review it. Thanks!

* sidebar: open immediately the intro page when clicking on "explanations/audit scanner" * minor grammar fixes Signed-off-by: Flavio Castelli <[email protected]>

flavio · 2023-09-11T13:08:41Z

@jvanz I did some small changes via 7596757 . I think we can merge this doc, even right now. We already have some 1.7.0 documentation already published

jvanz added area/documentation Improvements or additions to documentation kind/enhancement labels Jul 11, 2023

jvanz requested a review from a team July 11, 2023 13:13

jvanz requested a review from a team as a code owner July 11, 2023 13:13

jvanz self-assigned this Jul 11, 2023

viccuad marked this pull request as draft July 11, 2023 13:46

viccuad reviewed Jul 11, 2023

View reviewed changes