intro

What is kacti?

kacti is a command-line tool for verification of Kubernetes admission controllers.

kacti is designed to functionally test whether admission control is correctly configured. It attempts to deploy known-bad containers to Kubernetes clusters, and verifies whether the containers successfully deploy.

kacti uses a simple, human-readable format for admission control validatation tests (trials), shown below:

---
- name: log4shell
  description: |
    Tests whether container images vulnerable to Log4Shell (CVE-2021-44228)
    are accepted by the cluster
  image: quay.io/smileyfritz/log4shell-app:v0.5
  namespace: kacti

What is kacti?​

What is kacti?