Eliminate Kubernetes Misconfigurations from your CI/CD pipeline

Nearly 100 K8s-specific controls and dedicated frameworks to scan, detect and fix misconfigurations from the moment you write your first YAML line, up to production.

Powered by
+7.5K Stars

Secured CI/CD

Eliminate misconfigurations and vulnerabilities from your CI/CD pipeline

Full Kubernetes Compliance

All your security compliance needs in a single dashboard

RBAC Visualizer

Inspect your Kubernetes Role-Based-Access-Control like never before

Meet the Ultimate Open-Source
Kubernetes Security Platform

Kubernetes configuration

Detection and quick remediation of misconfigurations and drifts;

Scan all code repositories, manifest files (YAML, Helm), K8s clusters, worker nodes, and API servers;

Define and enforce Kubernetes security best practices against multiple frameworks (NSA, CIS, MITRE, K8s Best Practices, etc.) or create your own custom one;

Get instant Kubernetes risk score, see history of past scans and learn risk trends overtime;


Try it Now

Run within
your CI/CD()

Embrace “shift-left” and embed security from the moment you write your first YAML line all the way to production;

Simple integration to your favorite CI/CD tools including Jenkins, CircleCI, GitLab, GitHub workflows, GitHub actions, Visual Studio, Prometheus, Lens, Slack, and more;

Easy to use CLI interface and flexible output formats;

API based with read-only privileges;

Try it Now

Kubernetes RBAC
made easy()

Easy-to-use and easy-to-understand, visual RBAC configuration graph;

Built-in queries to reveal what you need to be aware of in your RBAC configuration;

Find who has access to K8s components using NLP-like query structure;

Customized RBAC investigation tool;

Try it Now


Learn everything you need to know about Kubescape in this short video

Play video

ARMO’s Kubernetes Security Solutions from Dev To Production

Check early in the CI/CD.
Continuous Kubernetes Posture Control
Runtime Zero-trust
Check early in the CI/CD.

Scan Kubernetes clusters, YAML files and HELM charts at early stages of the CI/CD pipeline;

Integrated seamlessly with common DevOps tools such as Jenkins, CircleCI, Github actions, Gitlab etc.;

Open Source. Free Forever.
Continuous Kubernetes Posture Control

Continuous monitoring of clusters’ posture;

Container software vulnerability scanning and remediation;

RBAC visualization and validation;


Runtime Zero-trust

Deep runtime observability

In-memory process protection

Secret protection

Zero Trust network protection

Service Mesh interoperability

Trusted by

Integrate well with your DevOps Tools.