Evidence Field doesn't show all the affected pods based on the count.It displays only one pod details. · aquasecurity/kube-hunter#499

(1 评论) (0 反应) (0 负责人)Python (4,541 star) (581 fork)batch import

buggood first issue

描述

What happened

Evidence field doesn't show all the affected pods rather it shows only the count and only one pod details

location: 127.0.0.1:10255 vid: KHV044 category: Privilege Escalation // Privileged container severity: high vulnerability: Privileged Container description: "A Privileged container exist on a node\n could expose the node/cluster
\ to unwanted root operations" evidence: 'pod: pod1, container: everything-allowed-pod, count: 6' avd_reference: https://avd.aquasec.com/kube-hunter/khv044/ hunter: Kubelet Readonly Ports Hunter

This is the case with all the output formats.

Expected behavior

It should display all the affected pods and containers based on the count irrespective of the output format. I expect that it should show all the 6 pod names and its respective containers.

贡献者指南

技术栈: pythonkubernetes
领域: clisecurity
议题类型: bug
难度: 2
预计时间: 1-3 hours
活动状态: stale
清晰度: clear
前置要求: PythonKubernetes fundamentals
新手友好度: 60
研究方向: The issue is about the evidence field not displaying all affected pods. The fix likely involves modifying the report generation code to iterate over all pod entries instead of showing only the first one. Look in the kube hunter package for evidence formatting, possibly in the reports or events module. There are no linked pull requests or assignees, so this issue is available for contribution. Examine the existing output format and add a loop to display each pod's details.