Abstract

Deploying applications using Kubernetes has become a standard practice in modern cloud-native environments. However, these deployments are frequently hindered by misconfigurations, security vulnerabilities, and operational instability, all of which can significantly affect overall system reliability and security. This paper investigates the application of kube-score, an open-source static code analysis tool specifically designed for evaluating the quality and robustness of Kubernetes object definitions. We systematically examine the key features of kube-score, highlighting its ability to detect configuration errors and provide actionable, context-aware recommendations that enhance both the security posture and operational resilience of Kubernetes workloads. In addition, we review alternative approaches to Kubernetes configuration analysis, positioning kube-score in terms of usability, integration flexibility, and effectiveness. The paper further discusses deployment models for kube-score, including its use as a containerized service within CI/CD pipelines and as a standalone plugin for local development. Through a detailed case study, we demonstrate how integrating kube-score into existing DevOps workflows enables teams to identify and remediate potential issues early in the development lifecycle, thereby reducing risk and promoting best practices. Our findings underscore the practical benefits of automated static analysis in supporting secure, stable, and efficient Kubernetes operations.

References

1. Gurajapu, A. (2026a). Best practices for monitoring Kubernetes clusters: Reliability and minimise operational overhead. World Journal of Advanced Engineering Technology and Sciences, 18(1), 7– 15. https://doi.org/10.30574/wjaets.2026.18.1.0002
2. Gurajapu, A. (2026b). Leveraging artificial intelligence to bridge execution gaps in SAFe®-scaled agile based programs. World Journal of Advanced Engineering Technology and Sciences, 18(1), 1– 6. https://doi.org/10.30574/wjaets.2026.18.1.1585
3. Gurajapu, A. (2026c). Orchestrating adaptive resilience and continuity restoration in cloud-native environments (with A. Agarwal). International Journal of Inventions in Engineering & Science Technology, 12(1), 1– 6. https://doi.org/10.37648/ijiest.v12i01.001
4. Gurajapu, A. (2026d). Secure runtime encryption of critical source-code functions for IP protection. World Journal of Advanced Research and Reviews, 29(1), 734–737. https://doi.org/10.30574/wjarr.2026.29.1.0079
5. Gurajapu, A. (2026e). Shift-left security validation of containers via Kubernetes admission webhook. Frontiers in Computer Science and Artificial Intelligence, 5(2), 63–68. https://doi.org/10.32996/jcsts.2026.5.1.6
6. Gurajapu, A. (2025a, December). Static analysis of Kubernetes object definitions using kube-score: Enhancing security and resilience. European Journal of Information Technologies and Computer Science. https://www.researchgate.net/publication/386984115 (Preprint; no formal DOI)
7. Gurajapu, A. (2025b). Swap Kubernetes secrets without application disruption: Comparative study and eBPFpowered kernel interception framework. World Journal of Advanced Engineering Technology and Sciences, 18(1), 66–70. https://doi.org/10.30574/wjaets.2026.18.1.0005
8. Gurajapu, A. (n.d.). Towards a futuristic security roadmap: Advanced strategies. Journal of Computer Science and Technology Studies, 8(1), 31–39. https://doi.org/10.32996/jcsts.2025.8.1.2
9. Introduction | Gatekeeper. (2024). GitHub. https://open-policy-agent.github.io/gatekeeper/website/docs/
10. kubesec.io. (2019). https://kubesec.io/
11. kube-score: Kubernetes object analysis with recommendations for improved reliability and security. (2025). https://kube-score.com/
12. Potla, S. (2025). The evolution of container security in Kubernetes environments. World Journal of Advanced Research and Reviews, 26(2), 2361. https://doi.org/10.30574/wjarr.2025.26.2.1741
13. zegl. (2025, April 28). kube-score [GitHub repository]. GitHub. https://github.com/zegl/kube-score