What is Kustomize.io?
Kustomize introduces a template-free way to customize application configuration that simplifies the use of off-the-shelf applications. Kustomize traverses a Kubernetes manifest to add, remove or update configuration options without forking. It is available both as a standalone binary and as a native feature of kubectl.
Sysdig Secure for Scanning Kustomize Templates
With Sysdig Secure you can apply consistent security policies for your Kustomize templates, autoremediate drift, and close the loop from production to source.
Scan IaC files before deployment. Map misconfigurations in production back to source.
Prioritize security fixes based on application context, requirements, and dependencies.
Remediate at the Source
Get fix recommendations and apply at the source with auto-generated pull requests.
Check out our documentation to learn more and get started.