Infrastructure & DevOps
k8scan
Kubernetes security scanner that detects misconfigurations, secrets, and RBAC flaws in Helm charts and manifests.
69/100
7-Frame production-readiness — according to Legit.Show
Is k8scan production-ready?
Legit.Show measured k8scan at 69 out of 100 on its 7-Frame production-readiness benchmark (public-surface assessment). Its strongest frame is Reliability (100); its weakest is Privacy (0). Every frame is measured deterministically from the public surface — exactly what was observed is shown below.
The 7 Frames
- Performance — 74/100
- Accessibility — 90/100
- Security — 25/100
- Privacy — 0/100
- Reliability — 100/100
- Standards — 92/100
- Discoverability — 100/100
What we measured
- No Content-Security-Policy and no HSTS.
- Served over HTTPS with a valid certificate.
- Lighthouse performance score 74/100 (147 ms to first byte).
- Returns a proper 404 for unknown routes.
- 3 of 3 sampled routes reachable.
- No privacy policy found.
- Sets cookies / loads scripts with no consent prompt.
- Discoverable: structured data, sitemap, OpenGraph image, canonical URL.
Who it's for
DevOps engineers · Kubernetes operators · Security teams · Enterprise organizations · Government agencies
Pricing
Starter $9/mo (3 scans/month), Pro $29/mo (20 scans/month), Enterprise custom pricing with unlimited scans