Before You Upgrade
-
There are certain differences between HummerRisk v1.0.0 and HummerRisk v0.10.0 and previous versions.
-
HummerRisk v1.0.0 adds some new features, removes some features, and refactors and fixes some features.
Overall structure
Functional principle
work process
Component description
- Vue: Vue.js is used as the front-end technology stack
- Spring Cloud: Using Spring Cloud as a microservice framework
- MySQL: MySQL is used as the database engine
- Cloud Custodian: Cloud Custodian is used as the cloud platform detection engine
- Prowler: Prowler is used as the AWS detection engine
- Trivy: Trivy is used as a cloud-native detection engine
- Kube-Bench: Kube-Bench is used as a CIS Kubernetes Benchmark detection tool
- Element: Element is used as the desktop component library
Architecture comparison
Architecture advantage
-
The system is split into multiple services with fine granularity, and each service is an independent business unit, making development and testing easier.
-
Each service does not depend on each other and can be deployed independently.
-
Each microservice focuses on a single function, and clearly expresses service boundaries through well-defined interfaces, service isolation, and complexity controllable.
-
When a component in the architecture fails, the failure will not spread within the process and cause the entire application to be unavailable, and the failure will be isolated in a single service.
-
A single service application can also achieve horizontal expansion. When different components of the application have different expansion requirements, each service can be independently expanded according to actual needs.
-
The concurrent execution of security detection is increased, the performance is increased by 100%, and the speed is doubled.
-
It is more in line with the requirements of enterprise-level software applications.
About HummerRisk
HummerRisk is an open source cloud-native security platform that solves cloud-native security and governance issues in a non-intrusive manner. Core capabilities include hybrid cloud security governance and K8S container cloud security detection.
GitHub address: https://github.com/HummerRisk/HummerRisk
Gitee Address: https://gitee.com/hummercloud/HummerRisk