Skip to content
/ kubectl-confirm Public

Intercepts kubectl on dangerous verbs for contexts defined as critical

2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

andymotta/kubectl-confirm

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
.github/workflows
.github/workflows
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
sample_config.yaml
sample_config.yaml
 
 

Repository files navigation

kubectl-confirm

kubectl-confirm is a utility that helps you prevent accidental dangerous operations on critical Kubernetes contexts. It works by intercepting kubectl commands and checking the context and verb against a list of critical contexts and dangerous verbs specified in a configuration file.

Quick Start

  1. cp sample_config.yaml ~/kube-confirm-config.yaml
  2. Update your .zshrc or a sourced file with the following Zsh function: 
    function kubectl() {
    if [ $# -lt 1 ]; then
        command kubectl
    else
        local context=$(command kubectl config current-context | cut -d/ -f2)
        kubectl-confirm "${context}" "$1"
        local exit_code=$?
        if [ $exit_code -eq 0 ]; then
            command kubectl "$@"
        fi
    fi
}
  3. Optionally set KUBECTL_CONFIRM_CONFIG in .zshrc to a custom path 
    export KUBECTL_CONFIRM_CONFIG=/path/to/your/config.yaml

About

Intercepts kubectl on dangerous verbs for contexts defined as critical

Resources

Readme
Activity

Stars

2 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 2

Release v0.0.2 Latest
Mar 19, 2023
+ 1 release

Packages

No packages published

Languages