Tweaks to kube-bench to get Bottlerocket to pass more checks

gistfile1.txt

Tweaks necessary to https://github.com/aquasecurity/kube-bench to get Bottlerocket to pass more checks.

Basically, the issue is that Bottlerocket does kubelet configuration slightly differently, so some paths
are different.

diff --git a/cfg/config.yaml b/cfg/config.yaml
index 55ff322..db5af12 100644
--- a/cfg/config.yaml
+++ b/cfg/config.yaml
@@ -120,11 +120,13 @@ node:
       - "/etc/kubernetes/kubelet.conf"
       - "/var/lib/kubelet/kubeconfig"
       - "/etc/kubernetes/kubelet-kubeconfig"
+      - "/etc/kubernetes/kubelet/kubeconfig"
       - "/var/snap/microk8s/current/credentials/kubelet.config"
     confs:
       - "/var/lib/kubelet/config.yaml"
       - "/var/lib/kubelet/config.yml"
       - "/etc/kubernetes/kubelet/kubelet-config.json"
+      - "/etc/kubernetes/kubelet/config"
       - "/home/kubernetes/kubelet-config.yaml"
       - "/home/kubernetes/kubelet-config.yml"
       - "/etc/default/kubelet"
@@ -161,6 +163,7 @@ node:
       - /var/snap/microk8s/current/args/kube-proxy
     kubeconfig:
       - "/etc/kubernetes/kubelet-kubeconfig"
+      - "/etc/kubernetes/kubelet/kubeconfig"
       - "/var/lib/kubelet/kubeconfig"
       - "/var/snap/microk8s/current/credentials/proxy.config"
     svc: