Bug Bounties

Kubernetes

Powered by: 

Allows bounty splitting: 

Average time to first program response: 10

Average time to bounty awarded null: 514

Average time to report resolved: 

Handle kubernetes

Managed program: true

Name: Kubernetes

Offers bounties: true

Offers swag: false

Response efficiency percentage: 88

Submission state: open

Url: https://hackerone.com/kubernetes

Website: https://kubernetes.io/

In scope:

  • Asset identifier: Community Management & Communications
  • Asset type: OTHER
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Kubernetes community management & communication tools are currently ineligible for bounty. Please avoid disruptions. List of ineligible community assets: - k8s.io event calendar: https://calendar.google.com/calendar/r?cid=Y2dudDM2NHZkOHM4NmhyMnBoYXBmamM2dWtAZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbQ - kubernetes.slack.com - @kubernetesio twitter handle - Kubernetes meetup account - kubeweekly news list: kube.news - google groups mailing lists, e.g. https://groups.google.com/forum/#!forum/kubernetes-* - subreddit: reddit.com/kubernetes - youtube.com/kubernetescommunity - Kubernetes zoom accounts - stack overflow tag: https://stackoverflow.com/questions/tagged/kubernetes
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: github.com/kubernetes-csi
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes CSI drivers & infrastructure. Not all repos are eligible for bounty. Eligible for bounty: - github.com/kubernetes-csi/external-provisioner - github.com/kubernetes-csi/external-snapshotter - github.com/kubernetes-csi/node-driver-registrar - github.com/kubernetes-csi/livenessprobe - github.com/kubernetes-csi/csi-release-tools - github.com/kubernetes-csi/csi-lib-utils - github.com/kubernetes-csi/kubernetes-csi.github.io - github.com/kubernetes-csi/docs Ineligible: - github.com/kubernetes-csi/driver-registrar (deprecated) - github.com/kubernetes-csi/csi-test - github.com/kubernetes-csi/drivers (example code) - github.com/kubernetes-csi/cluster-driver-registrar (deprecated) - github.com/kubernetes-csi/external-attacher (alpha) - github.com/kubernetes-csi/external-resizer (alpha) - github.com/kubernetes-csi/csi-driver-host-path (not recommended for production) - github.com/kubernetes-csi/csi-driver-iscsi (not stable) - github.com/kubernetes-csi/csi-driver-nfs (not stable) - github.com/kubernetes-csi/csi-driver-image-populator (not stable) - github.com/kubernetes-csi/csi-driver-flex (not stable) - github.com/kubernetes-csi/csi-driver-fibre-channel (not stable) - github.com/kubernetes-csi/csi-lib-fc (not stable) - github.com/kubernetes-csi/csi-lib-iscsi (not stable)
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: github.com/kubernetes-retired
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: The retired projects are no longer maintained
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes-client
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes client libraries. The stable libraries are eligible for bounty, including: - https://github.com/kubernetes-client/python - https://github.com/kubernetes-client/java Supporting libraries are also eligible: - https://github.com/kubernetes-client/gen - https://github.com/kubernetes-client/python-base All other libraries are ineligible for bounty due to the alpha status or work in progress status.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes-incubator
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: The kubernetes-incubator process is deprecated.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes-security
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Unauthorized access (read or write) to any repositories under the kubernetes-security github organization is eligible.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes-sigs
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Unless explicitly listed as an eligible asset, repositories under the kubernetes-sigs github org are not eligible for bounty.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/api
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: The canonical location of the Kubernetes API definition.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/apiextensions-apiserver
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: API server for API extensions like CustomResourceDefinitions
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/apimachinery
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: 
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/apiserver
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Library for writing a Kubernetes-style API server.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/autoscaler
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Autoscaling components for Kubernetes
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cli-runtime
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Set of helpers for creating kubectl commands and plugins.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/client-go
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Go client for Kubernetes.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: cloud-provider defines the shared interfaces which Kubernetes cloud providers implement. These interfaces allow various controllers to integrate with any cloud provider in a pluggable fashion. Also serves as an issue tracker for SIG Cloud Provider.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-alibaba-cloud
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: CloudProvider for Alibaba Cloud Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-aws
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-azure
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Cloud provider for Azure Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-gcp
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-openstack
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-sample
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Sample of how to build a cloud provider repo. This will build a Kubernetes image which deploys on bare metal. It uses the fake cloud provider. It consumes the K8s/K8s build artifact and adds to it the Cloud Controller Manager and CSI Daemon Set. Example code.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cloud-provider-vsphere
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Kubernetes Cloud Provider for vSphere (Beta) Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cluster-bootstrap
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: 
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cluster-registry
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Cluster Registry API
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/code-generator
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Generators for kube-like API types
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/community
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Kubernetes community content
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/component-base
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Shared code for kubernetes core components
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/cri-api
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Container Runtime Interface (CRI) – a plugin interface which enables kubelet to use a wide variety of container runtimes.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/csi-api
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: 
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/csi-translation-lib
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Staging repo for CSI Migration/Translation libraries
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/dashboard
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: General-purpose web UI for Kubernetes clusters
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/dns
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes DNS service
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/enhancements
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Features tracking repo for Kubernetes releases
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/examples
  • Asset type: SOURCE_CODE
  • Availability requirement: medium
  • Confidentiality requirement: medium
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Kubernetes application example tutorials
  • Integrity requirements: medium
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/frakti
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: The hypervisor-based container runtime for Kubernetes. Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/funding
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Funding requests for project infrastructure, events, and consulting.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/gengo
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Gengo library for code generation.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/git-sync
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: A sidecar app which clones a git repo and keeps it in sync with the upstream.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/ingress-gce
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Ingress controller for Google Cloud Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/ingress-nginx
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: NGINX Ingress Controller for Kubernetes
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/k8s.io
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes files for various *.k8s.io sites
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/klog
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Forked from golang/glog Leveled execution logs for Go (fork of https://github.com/golang/glog)
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kompose
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Go from Docker Compose to Kubernetes
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kops
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes Operations (kops) - Production Grade K8s Installation, Upgrades, and Management
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-aggregator
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Aggregator for Kubernetes-style API servers: dynamic registration, discovery summarization, secure proxy
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-controller-manager
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: kube-controller-manager component configs
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-deploy
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: A place for cluster deployment automation
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-openapi
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes OpenAPI spec generation & serving
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-proxy
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: kube-proxy component configs
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-scheduler
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: kube-scheduler component configs
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kube-state-metrics
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Add-on agent to generate and expose cluster-level metrics.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kubeadm
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Aggregator for issues filed against kubeadm
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kubectl
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Issue tracker and mirror of kubectl code
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kubelet
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: kubelet component configs
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kubernetes
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Production-Grade Container Scheduling and Management
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kubernetes-anywhere
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: {concise,reliable,cross-platform} turnup of Kubernetes clusters DEPRECATED
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/kubernetes-template-project
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: A template for starting new projects on the github.com/kubernetes organization
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/legacy-cloud-providers
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: This repository hosts the legacy in-tree cloud providers. Out-of-tree cloud providers can consume packages in this repo to support legacy implementations of their Kubernetes cloud provider. Vendor-specific plugins are not eligible for bounty. We recommend reporting vulnerabilities through the vendor's bug bounty program instead.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/metrics
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes metrics-related API types and clients
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/minikube
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Run Kubernetes locally
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/node-api
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: 
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/node-problem-detector
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: This is a place for various problem detectors running on the Kubernetes nodes.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/org
  • Asset type: SOURCE_CODE
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Meta configuration for Kubernetes Github Org
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/perf-tests
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Performance tests and benchmarks
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/publishing-bot
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Code behind the robot to publish from staging to real repositories.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/release
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Release infrastructure for Kubernetes and related components
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/repo-infra
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes repository infrastucture tools
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/sample-apiserver
  • Asset type: SOURCE_CODE
  • Availability requirement: medium
  • Confidentiality requirement: medium
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Reference implementation of an apiserver for a custom Kubernetes API. Example code.
  • Integrity requirements: medium
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/sample-cli-plugin
  • Asset type: SOURCE_CODE
  • Availability requirement: medium
  • Confidentiality requirement: medium
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Sample kubectl plugin
  • Integrity requirements: medium
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/sample-controller
  • Asset type: SOURCE_CODE
  • Availability requirement: medium
  • Confidentiality requirement: medium
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Repository for sample controller. Complements sample-apiserver
  • Integrity requirements: medium
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/security
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: Kubernetes Security Process and Security Committee docs
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/sig-release
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Repo for SIG release
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/steering
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: 
  • Eligible for submissions: true
  • Instruction: The Kubernetes Steering Committee
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/test-infra
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Test infrastructure for the Kubernetes project.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/utils
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Non-Kubernetes-specific utility libraries which are consumed by multiple projects.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://github.com/kubernetes/website
  • Asset type: SOURCE_CODE
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes website and documentation repo:
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: https://storage.googleapis.com/kubernetes-release/
  • Asset type: OTHER
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes release artifacts download server. Write access or modification of assets are eligible for bounty. Please DO NOT modify production artifacts. If you need a test target, you can use a test artifact such as `addons/test/crinit/2017-11-17/crinit`
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: k8s.gcr.io
  • Asset type: OTHER
  • Availability requirement: high
  • Confidentiality requirement: high
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Our official container repository (an alias to gcr.io/google-containers). The ability to write to or modify containers in the repository are in scope. Please DO NOT modify production containers. If you need a test target, please use a test image such as fakegitserver.
  • Integrity requirements: high
  • Max severity: critical



  • Asset identifier: k8s.io
  • Asset type: URL
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes nginx server.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: kubernetes-csi.github.io
  • Asset type: URL
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes CSI documentation site.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: kubernetes.io
  • Asset type: URL
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Main kubernetes website, hosted by netlify.
  • Integrity requirements: 
  • Max severity: critical



  • Asset identifier: prow.k8s.io
  • Asset type: URL
  • Availability requirement: 
  • Confidentiality requirement: 
  • Eligible for bounty: true
  • Eligible for submissions: true
  • Instruction: Kubernetes build & test infrastructure. Please limit automated scanning to 1qps.
  • Integrity requirements: 
  • Max severity: critical