Project 'dsop/Falkonry-Inc/http-forwarder' was moved to 'iron-bank-archives/dsop-archives/falkonry-inc/Falkonry-Inc/http-forwarder'. Please update any links and bookmarks that may still have the old path.
No Compliance Checks for Nodes or Platform Visible
Bug
Description
Describe the problem, what were you doing when you noticed the bug?
When deploying neuvector as part of BigBang v2.37.0 scanning results for Platform and Node Assets are not generating any results in Compliance Reports. The scans appear to be completing successfully and Node Assets do show Vulnerabilities found, but not any resulting Compliance entries. The logs of the neuvector-controller-pod contain several INFO messages which appear to be related to the Node's CIS Benchmark results failing.
Log Message (identifying data masked):
|INFO|CTL|rest._getCISReportFromCluster: Benchmark report not found - error=Key not found key=bench/ip-XXX-XXX-XXX-XXX.us-gov-west-1.compute.internal:asdfasdf-asdf-asdf-asdf-asdfasdf/report/custom_hostProvide any steps possible used to reproduce the error (ideally in an isolated fashion).
- Enable
containerdruntime path in Helm Values Overrides - Deploy Neuvector as part of BigBang to an EKS cluster
- Login to Neuvector GUI
- Navigate to Assets > Nodes
- Scan the nodes
- Navigate to Security Risks > Compliance
- Select
Advanced Filterand ensure all categories are checked - [BUG] Notice that nothing except
Dockercategory is detected
BigBang Version
v2.37.0