kubescore added

Nithunikzz · Nithunikzz · commit 23205ab071cf · 2023-12-18T23:11:43.000+05:30
diff --git a/agent/kubviz/k8smetrics_agent.go b/agent/kubviz/k8smetrics_agent.go
@@ -130,7 +130,7 @@ func main() {
 		// //getK8sEvents(clientset)
 		// err = runTrivyScans(config, js)
 		// LogErr(err)
-		err = RunKubeScore(config, js)
+		err = RunKubeScore(clientset, js)
 		LogErr(err)
 	}
 
@@ -321,7 +321,7 @@ func initScheduler(config *rest.Config, js nats.JetStreamContext, cfg config.Age
 		}
 	}
 	if cfg.KubeScoreInterval != "" && cfg.KubeScoreInterval != "0" {
-		sj, err := NewKubescoreJob(config, js, cfg.KubeScoreInterval)
+		sj, err := NewKubescoreJob(clientset, js, cfg.KubeScoreInterval)
 		if err != nil {
 			log.Fatal("no time interval", err)
 		}
diff --git a/agent/kubviz/kube_score.go b/agent/kubviz/kube_score.go
@@ -1,8 +1,8 @@
 package main
 
 import (
+	"context"
 	"encoding/json"
-	"fmt"
 	"log"
 	exec "os/exec"
 
@@ -11,70 +11,76 @@ import (
 	"github.com/intelops/kubviz/model"
 	"github.com/nats-io/nats.go"
 	"github.com/zegl/kube-score/renderer/json_v2"
-	"k8s.io/client-go/rest"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/kubernetes"
 )
 
-func RunKubeScore(config *rest.Config, js nats.JetStreamContext) error {
-	// _, err := kubernetes.NewForConfig(config)
-	// if err != nil {
-	// 	log.Printf("Error creating Kubernetes clientset: %v", err)
-	// 	return err
-	// }
-	//defer wg.Done()
-	var report []json_v2.ScoredObject
-	cmd := fmt.Sprintf(`kubectl api-resources --verbs=list --namespaced -o name | xargs -n1 -I{} sh -c "kubectl get {} --all-namespaces -oyaml && echo ---" | kube-score score - -o json`)
-	log.Printf("Command: %s", cmd)
-
-	// Execute the command
-	out, err := executeCommand(cmd)
+func RunKubeScore(clientset *kubernetes.Clientset, js nats.JetStreamContext) error {
+	nsList, err := clientset.CoreV1().
+		Namespaces().
+		List(context.Background(), metav1.ListOptions{})
 	if err != nil {
-		log.Printf("Error executing command: %s", err)
+		log.Println("Error occurred while getting client set for kube-score: ", err)
 		return err
 	}
 
-	// Log the output of the kubectl command
-	log.Printf("kubectl Command Output: %s", out)
+	log.Printf("Namespace size: %d", len(nsList.Items))
+	for _, n := range nsList.Items {
+		log.Printf("Publishing kube-score recommendations for namespace: %s\n", n.Name)
+		publish(n.Name, js)
+	}
+	return nil
+}
 
-	// Continue with the rest of the code...
+func publish(ns string, js nats.JetStreamContext) error {
+	var report []json_v2.ScoredObject
+	cmd := "kubectl api-resources --verbs=list --namespaced -o name | xargs -n1 -I{} sh -c \"kubectl get {} -n " + ns + " -oyaml && echo ---\" | kube-score score - -o json"
+	log.Printf("Command:  %#v,", cmd)
+	out, err := executeCommand(cmd)
+	if err != nil {
+		log.Println("Error occurred while running kube-score: ", err)
+		return err
+	}
+	// 	// Continue with the rest of the code...
 	err = json.Unmarshal([]byte(out), &report)
 	if err != nil {
 		log.Printf("Error occurred while Unmarshalling json: %v", err)
 		return err
 	}
 
 	publishKubescoreMetrics(report, js)
+	//err = publishKubescoreMetrics(uuid.New().String(), ns, out, js)
+	if err != nil {
+		return err
+	}
 	return nil
 }
 
-func publishKubescoreMetrics(report []json_v2.ScoredObject, js nats.JetStreamContext) {
+func publishKubescoreMetrics(report []json_v2.ScoredObject, js nats.JetStreamContext) error {
 	metrics := model.KubeScoreRecommendations{
 		ID:          uuid.New().String(),
 		ClusterName: ClusterName,
 		Report:      report,
 	}
-	metricsJson, err := json.Marshal(metrics)
+	metricsJson, _ := json.Marshal(metrics)
+	_, err := js.Publish(constants.KUBESCORE_SUBJECT, metricsJson)
 	if err != nil {
-		log.Printf("Error marshaling metrics to JSON: %v", err)
-		return
-	}
-	_, err = js.Publish(constants.KUBESCORE_SUBJECT, metricsJson)
-	if err != nil {
-		log.Printf("error occures while publish %v", err)
-		return
+		return err
 	}
+	//log.Printf("Recommendations with ID:%s has been published\n", id)
+	log.Printf("Recommendations  :%#v", report)
+	return nil
 }
 
 func executeCommand(command string) (string, error) {
 	cmd := exec.Command("/bin/sh", "-c", command)
 	stdout, err := cmd.Output()
 
 	if err != nil {
-		log.Printf("Error executing command: %s", err)
-		return "", err
+		log.Println("Execute Command Error", err.Error())
 	}
 
 	// Print the output
-	log.Printf("Command Output: %s", string(stdout))
-
+	log.Println(string(stdout))
 	return string(stdout), nil
 }
diff --git a/agent/kubviz/scheduler_watch.go b/agent/kubviz/scheduler_watch.go
@@ -2,6 +2,7 @@ package main
 
 import (
 	"github.com/nats-io/nats.go"
+	"k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/rest"
 )
 
@@ -32,7 +33,7 @@ type KubePreUpgradeJob struct {
 	frequency string
 }
 type KubescoreJob struct {
-	config    *rest.Config
+	clientset *kubernetes.Clientset
 	js        nats.JetStreamContext
 	frequency string
 }
@@ -87,9 +88,9 @@ func (j *KubePreUpgradeJob) Run() {
 	LogErr(err)
 }
 
-func NewKubescoreJob(config *rest.Config, js nats.JetStreamContext, frequency string) (*KubescoreJob, error) {
+func NewKubescoreJob(clientset *kubernetes.Clientset, js nats.JetStreamContext, frequency string) (*KubescoreJob, error) {
 	return &KubescoreJob{
-		config:    config,
+		clientset: clientset,
 		js:        js,
 		frequency: frequency,
 	}, nil
@@ -100,7 +101,7 @@ func (v *KubescoreJob) CronSpec() string {
 
 func (j *KubescoreJob) Run() {
 	// Call the Kubescore function with the provided config and js
-	err := RunKubeScore(j.config, j.js)
+	err := RunKubeScore(j.clientset, j.js)
 	LogErr(err)
 }
 func NewRakkessJob(config *rest.Config, js nats.JetStreamContext, frequency string) (*RakkessJob, error) {
diff --git a/client/pkg/clickhouse/db_client.go b/client/pkg/clickhouse/db_client.go
@@ -532,15 +532,6 @@ func (c *DBClient) InsertKubeScoreMetrics(metrics model.KubeScoreRecommendations
 
 	currentTime := time.Now().UTC()
 
-	// if _, err := stmt.Exec(
-	// 	metrics.ID,
-	// 	metrics.Namespace,
-	// 	metrics.ClusterName,
-	// 	metrics.Recommendations,
-	// 	currentTime,
-	// ); err != nil {
-	// 	log.Fatal(err)
-	// }
 	for _, result := range metrics.Report {
 		for _, check := range result.Checks {
 			for _, comments := range check.Comments {
diff --git a/client/pkg/clickhouse/statements.go b/client/pkg/clickhouse/statements.go
@@ -237,7 +237,7 @@ const InsertDeletedApi DBStatement = "INSERT INTO DeletedAPIs (ClusterName, Obje
 const InsertKubvizEvent DBStatement = "INSERT INTO events (ClusterName, Id, EventTime, OpType, Name, Namespace, Kind, Message, Reason, Host, Event, FirstTime, LastTime) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)"
 const clickhouseExperimental DBStatement = `SET allow_experimental_object_type=1;`
 const containerGithubTable DBStatement = `CREATE table IF NOT EXISTS container_github(event JSON) ENGINE = MergeTree ORDER BY tuple();`
-const InsertKubeScore string = "INSERT INTO kubescore (id, namespace, cluster_name, recommendations, EventTime) VALUES (?, ?, ?, ?, ?)"
+const InsertKubeScore string = "INSERT INTO kubescore(id,clustername,object_name,kind,apiVersion,name,namespace,target_type,description,path,summary,file_name,file_row,EventTime) VALUES(?,?,?,?,?,?,?,?,?,?,?,?,?,?)"
 const InsertTrivyVul string = "INSERT INTO trivy_vul (id, cluster_name, namespace, kind, name, vul_id, vul_vendor_ids, vul_pkg_id, vul_pkg_name, vul_pkg_path, vul_installed_version, vul_fixed_version, vul_title, vul_severity, vul_published_date, vul_last_modified_date) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?. ?)"
 const InsertTrivyImage string = "INSERT INTO trivyimage (id, cluster_name, artifact_name, vul_id,  vul_pkg_id, vul_pkg_name,  vul_installed_version, vul_fixed_version, vul_title, vul_severity, vul_published_date, vul_last_modified_date) VALUES ( ?, ?,?, ?, ?, ?, ?, ?, ?, ?, ?, ?)"
 const InsertTrivyMisconfig string = "INSERT INTO trivy_misconfig (id, cluster_name, namespace, kind, name, misconfig_id, misconfig_avdid, misconfig_type, misconfig_title, misconfig_desc, misconfig_msg, misconfig_query, misconfig_resolution, misconfig_severity, misconfig_status, EventTime) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)"
diff --git a/sql/000008_kubescore.up.sql b/sql/000008_kubescore.up.sql
@@ -1,8 +1,17 @@
 CREATE TABLE IF NOT EXISTS kubescore (
-	id              UUID,
-	namespace       String,
-	cluster_name    String,
-	recommendations String,
+	id 				UUID,
+	clustername 	String,
+	object_name 	String,
+	kind 			String,
+	apiVersion 		String,
+	name 			String,
+	namespace 		String,
+	target_type 	String,
+	description 	String,
+	path 			String,
+	summary 		String,
+	file_name 		String,
+	file_row  		BIGINT,
     EventTime       DateTime('UTC'),
 	ExpiryDate DateTime DEFAULT now() + INTERVAL {{.TTLValue}} {{.TTLUnit}}
 ) ENGINE = MergeTree() 

Original file line number	Diff line number	Diff line change
`@@ -130,7 +130,7 @@ func main() {`
`130`	`130`	`// //getK8sEvents(clientset)`
`131`	`131`	`// err = runTrivyScans(config, js)`
`132`	`132`	`// LogErr(err)`
`133`		`- err = RunKubeScore(config, js)`
	`133`	`+ err = RunKubeScore(clientset, js)`
`134`	`134`	`LogErr(err)`
`135`	`135`	`}`
`136`	`136`
`@@ -321,7 +321,7 @@ func initScheduler(config *rest.Config, js nats.JetStreamContext, cfg config.Age`
`321`	`321`	`}`
`322`	`322`	`}`
`323`	`323`	`if cfg.KubeScoreInterval != "" && cfg.KubeScoreInterval != "0" {`
`324`		`- sj, err := NewKubescoreJob(config, js, cfg.KubeScoreInterval)`
	`324`	`+ sj, err := NewKubescoreJob(clientset, js, cfg.KubeScoreInterval)`
`325`	`325`	`if err != nil {`
`326`	`326`	`log.Fatal("no time interval", err)`
`327`	`327`	`}`