Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type JobReconciler ¶
type JobReconciler struct {
Config etc.Operator
Client client.Client
LogsReader *logs.Reader
Log logr.Logger
Scheme *runtime.Scheme
Scanner scanner.VulnerabilityScanner
Store reports.StoreInterface
}
func (*JobReconciler) GetPodControlledBy ¶
func (*JobReconciler) SetupWithManager ¶
func (r *JobReconciler) SetupWithManager(mgr ctrl.Manager) error
type PodReconciler ¶
type PodReconciler struct {
Config etc.Operator
Client client.Client
Store reports.StoreInterface
Scanner scanner.VulnerabilityScanner
Log logr.Logger
Scheme *runtime.Scheme
}
func (*PodReconciler) Reconcile ¶
Reconcile resolves the actual state of the system against the desired state of the system. The desired state is that there is a vulnerability report associated with the controller managing the given Pod. Since the scanning is asynchronous, the desired state is also when there's a pending scan Job for the underlying workload.
As Kubernetes invokes the Reconcile() function multiple times throughout the lifecycle of a Pod, it is important that the implementation be idempotent to prevent the creation of duplicate scan Jobs or vulnerability reports.
The Reconcile function returns two object which indicate whether or not Kubernetes should requeue the request.
func (*PodReconciler) SetupWithManager ¶
func (r *PodReconciler) SetupWithManager(mgr ctrl.Manager) error
Source Files
Click to show internal directories.
Click to hide internal directories.