Make every debugging way that is possible, easy to use!
This project should also serve as a stark reminder of the complexity of kubernetes security mechanism, because this tool will use every method to reach it's goal even if it's a results of missunderstood or hard to use kubernetes security configs.
And will hopefully one day provided via a simple install with krew - kubectl plugin manager
working tooling for debgging container in k8s in environments that don't have an "allow all" config or where the debugging person is NOT cluster-admin
- working
kubectl cpwithouttarinside container - working
kubectl debugthat injects intself INTO the running container (thus all processes and all files and PVs are there) - Having a simple editor like
viready to just change some config files on an in use PV
- method to
kubectl cpwithout requiringtarin the container - usable
kubectl debugto connect INTO a running container in a pod and debug running daemons- like interacting with files and PVs (this does not work with
kubectl debugand makes it practically useless for most of our usecases) - seeing processes (granted that works with
kubectl debug --target)
- like interacting with files and PVs (this does not work with
kubectl-superdebug - really nice tool, though mostly lacking permissions to patch pods