From d60a842373f987d612e06c1147bec41ea30c1709 Mon Sep 17 00:00:00 2001
From: Tim Smith <tim@mondoo.com>
Date: Thu, 16 Feb 2023 16:56:12 -0800
Subject: [PATCH] Add cnspec tool

OSS CLI tool to scan K8s clusters, manifests, containers, container
registries + a lot more.

Signed-off-by: Tim Smith <tsmith84@gmail.com>
---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 41649a2..9e76a4d 100644
--- a/README.md
+++ b/README.md
@@ -7,6 +7,7 @@ A curated list of awesome Kubernetes security resources. Can you dig it?
 - [aad-pod-identity](https://github.com/Azure/aad-pod-identity/) -  Assign Azure AD idenitites to pods in Kubernetes, in order to access Azure resources
 - [audit2rbac](https://github.com/liggitt/audit2rbac) - Autogenerate RBAC policies based on Kubernetes audit logs
 - [Deepfence ThreatMapper](https://github.com/deepfence/ThreatMapper) - Apache v2, powerful runtime vulnerability scanner for kubernetes, virtual machines and serverless
+- [cnspec](https://cnspec.io) - Scan Kubernetes clusters, containers, and manifest files for vulnerabilities and misconfigurations
 - [falco](https://github.com/falcosecurity/falco) - Container Native Runtime Security
 - [kiam](https://github.com/uswitch/kiam) - Integrate AWS IAM with Kubernetes
 - [kube-bench](https://github.com/aquasecurity/kube-bench) - Check whether Kubernetes is deployed according to security best practics