From 5db2250930e7cb3bd97b600a200746cb68046421 Mon Sep 17 00:00:00 2001
From: gabyf <gaby.fulchic@ynov.com>
Date: Fri, 9 Jun 2023 09:37:11 +0200
Subject: [PATCH] docs: add links for kubescape & kubelight

kubescape is a really active project and complete scanning tool, with a lot of report/output available.
kubelight [WIP but seems very useful] allow you to check your PCI-DSS/SOC2 compliance directly.
---
 README.md | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/README.md b/README.md
index db5cd9e..e1b47f6 100644
--- a/README.md
+++ b/README.md
@@ -15,6 +15,8 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
 - [kube-hunter](https://github.com/aquasecurity/kube-hunter) - Hunt for security weaknesses in Kubernetes clusters
 - [kube-psp-advisor](https://github.com/sysdiglabs/kube-psp-advisor) - Help building an adaptive and fine-grained pod security policy
 - [kube-scan](https://github.com/octarinesec/kube-scan) - k8s cluster risk assessment tool
+- [kubescape](https://github.com/kubescape/kubescape) - k8s risk analysis, security compliance, and misconfiguration scanning.
+- [kubelight - WIP but promising](https://github.com/OWASP/KubeLight) - OWASP project to scan your Kubernetes Cluster for Security & Compliance.
 - [Kubei](https://github.com/Portshift/kubei) - Vulnerabilities scanner for Kubernetes clusters
 - [kube2iam](https://github.com/jtblin/kube2iam) - Provide different AWS IAM roles for pods running on Kubernetes
 - [kubeaudit](https://github.com/Shopify/kubeaudit) - Audit your Kubernetes clusters against common security controls