The OpenReports API enables uniform reporting of results and findings from policy engines, scanners, or other tooling.
This repository contains the API specification and Custom Resource Definitions (CRDs).
The API provides a ClusterReport and its namespaced variant Report.
Each Report contains a set of results and a summary. Each result contains attributes such as the source policy and rule name, severity, timestamp, and the resource.
Typically the Report API is installed and managed by a producer. However, if you want to install it independently, there are multiple ways to do so:
kubectl apply -f https://github.com/openreports/reports-api/releases/download/<version>/install.yaml# Using OCI
helm install oci://ghcr.io/openreports/charts/openreports:<version>
# Using the github repository
helm repo add openreports https://openreports.github.io/reports-api
helm install openreports/openreportsTo try out the Report API in your cluster, you can follow the steps bellow:
- Add Report API CRDs to your cluster:
kubectl apply -f https://github.com/openreports/reports-api/releases/download/v0.1.0/install.yaml
- Create a sample policy report resource:
kubectl create -f https://raw.githubusercontent.com/openreports/reports-api/refs/heads/main/samples/sample-cis-k8s.yaml- View policy report resources:
kubectl get reportsThe following is a list of projects that produce or consume policy reports:
(To add your project, please create a pull request.)
make buildYou can reach the maintainers of this project at:
Participation in the OpenReport community is governed by the CNCF Code of Conduct.
See the Kubernetes Policy Working Group repository and the Policy Reports API proposal for background and details.