Basic Kubescape support in Marketplace

[slashben]

BACKGROUND

• Adding the Kubescape stack to the Marketplace

---

Changes

• Added management scripts to Kubescape-operator stack

Checklist

• review the contributing doc with steps for both adding or updating your application (if applicable)

---

Reviewer: @marketplace-eng

[mbeyt]

Apologies for the long wait on this.

The deploy and uninstall scripts work fine, but the upgrade throws errors:

Error: UPGRADE FAILED: cannot patch "node-agent" with kind DaemonSet: DaemonSet.apps "node-agent" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"node-agent", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "kubescape" with kind Deployment: Deployment.apps "kubescape" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"kubescape", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "kubevuln" with kind Deployment: Deployment.apps "kubevuln" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"kubevuln", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "operator" with kind Deployment: Deployment.apps "operator" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"operator", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "storage" with kind Deployment: Deployment.apps "storage" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"storage", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable

There is a deprecation warning on the initial deploy that might be related:
spec.template.metadata.annotations[container.apparmor.security.beta.kubernetes.io/node-agent]: deprecated since v1.30; use the "appArmorProfile" field instead

[mbeyt]

Looks like there's still an error on upgrade:

Error: UPGRADE FAILED: cannot patch "node-agent" with kind DaemonSet: DaemonSet.apps "node-agent" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"node-agent", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "kubescape" with kind Deployment: Deployment.apps "kubescape" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"kubescape", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "kubevuln" with kind Deployment: Deployment.apps "kubevuln" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"kubevuln", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "operator" with kind Deployment: Deployment.apps "operator" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"operator", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable && cannot patch "storage" with kind Deployment: Deployment.apps "storage" is invalid: spec.selector: Invalid value: v1.LabelSelector{MatchLabels:map[string]string{"app.kubernetes.io/component":"storage", "app.kubernetes.io/instance":"kubescape-operator", "app.kubernetes.io/name":"kubescape-operator"}, MatchExpressions:[]v1.LabelSelectorRequirement(nil)}: field is immutable

[msannan2]

Closing this PR due to inactivity.
There hasn’t been any response or update in over six months. If you’d like to continue the work or revisit the changes in the future, feel free to reopen this PR or open a new one. Thanks for the initial contribution!