From 022673f37620bffd53df26bd88b0d443778a315a Mon Sep 17 00:00:00 2001
From: Matt Long <mtl@cisco.com>
Date: Fri, 23 Jan 2026 11:58:38 +0100
Subject: [PATCH 1/5] Update to bazel and add tests

---
 .bazelignore                                  |   14 +
 .bazelrc                                      |   21 +
 .bazelversion                                 |    1 +
 .gitignore                                    |   25 +
 BUILD.bazel                                   |   81 ++
 MODULE.bazel                                  |   38 +
 cmd/BUILD.bazel                               |   13 +
 .../omnicate-ksniff/pkg/cmd/index.html        |   98 ++
 .../pkg/cmd/sniff.go.gcov.html                |  563 +++++++++
 .../omnicate-ksniff/utils/index.html          |   98 ++
 .../omnicate-ksniff/utils/utils.go.gcov.html  |  128 ++
 coverage_html/amber.png                       |  Bin 0 -> 141 bytes
 coverage_html/cmd_line                        |    1 +
 coverage_html/emerald.png                     |  Bin 0 -> 141 bytes
 coverage_html/gcov.css                        | 1125 +++++++++++++++++
 coverage_html/glass.png                       |  Bin 0 -> 167 bytes
 coverage_html/index-sort-f.html               |  116 ++
 coverage_html/index-sort-l.html               |  116 ++
 coverage_html/index.html                      |  116 ++
 coverage_html/ruby.png                        |  Bin 0 -> 141 bytes
 coverage_html/runtime/containerd.go.gcov.html |  145 +++
 coverage_html/runtime/crio.go.gcov.html       |  169 +++
 coverage_html/runtime/docker.go.gcov.html     |  135 ++
 coverage_html/runtime/index-sort-f.html       |  125 ++
 coverage_html/runtime/index-sort-l.html       |  125 ++
 coverage_html/runtime/index.html              |  125 ++
 coverage_html/runtime/runtime.go.gcov.html    |  109 ++
 coverage_html/snow.png                        |  Bin 0 -> 141 bytes
 coverage_html/updown.png                      |  Bin 0 -> 117 bytes
 go.mod                                        |   71 +-
 kube/BUILD.bazel                              |   26 +
 kube/kubernetes_api_service.go                |    4 +-
 kube/ops.go                                   |    2 +-
 pkg/cmd/BUILD.bazel                           |   46 +
 pkg/cmd/sniff.go                              |   28 +-
 pkg/cmd/sniff_test.go                         |  454 ++++++-
 pkg/config/BUILD.bazel                        |    9 +
 pkg/service/sniffer/BUILD.bazel               |   20 +
 pkg/service/sniffer/runtime/BUILD.bazel       |   29 +
 pkg/service/sniffer/runtime/runtime_test.go   |  263 ++++
 tcpdump.BUILD                                 |   49 +
 utils/BUILD.bazel                             |   15 +
 42 files changed, 4491 insertions(+), 12 deletions(-)
 create mode 100644 .bazelignore
 create mode 100644 .bazelrc
 create mode 100644 .bazelversion
 create mode 100644 .gitignore
 create mode 100644 BUILD.bazel
 create mode 100644 MODULE.bazel
 create mode 100644 cmd/BUILD.bazel
 create mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html
 create mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html
 create mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html
 create mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html
 create mode 100644 coverage_html/amber.png
 create mode 100644 coverage_html/cmd_line
 create mode 100644 coverage_html/emerald.png
 create mode 100644 coverage_html/gcov.css
 create mode 100644 coverage_html/glass.png
 create mode 100644 coverage_html/index-sort-f.html
 create mode 100644 coverage_html/index-sort-l.html
 create mode 100644 coverage_html/index.html
 create mode 100644 coverage_html/ruby.png
 create mode 100644 coverage_html/runtime/containerd.go.gcov.html
 create mode 100644 coverage_html/runtime/crio.go.gcov.html
 create mode 100644 coverage_html/runtime/docker.go.gcov.html
 create mode 100644 coverage_html/runtime/index-sort-f.html
 create mode 100644 coverage_html/runtime/index-sort-l.html
 create mode 100644 coverage_html/runtime/index.html
 create mode 100644 coverage_html/runtime/runtime.go.gcov.html
 create mode 100644 coverage_html/snow.png
 create mode 100644 coverage_html/updown.png
 create mode 100644 kube/BUILD.bazel
 create mode 100644 pkg/cmd/BUILD.bazel
 create mode 100644 pkg/config/BUILD.bazel
 create mode 100644 pkg/service/sniffer/BUILD.bazel
 create mode 100644 pkg/service/sniffer/runtime/BUILD.bazel
 create mode 100644 tcpdump.BUILD
 create mode 100644 utils/BUILD.bazel

diff --git a/.bazelignore b/.bazelignore
new file mode 100644
index 0000000..2f79d01
--- /dev/null
+++ b/.bazelignore
@@ -0,0 +1,14 @@
+# Ignore bazel symlink directories
+bazel-bin
+bazel-out
+bazel-testlogs
+bazel-ksniff
+
+# Ignore existing build artifacts
+kubectl-sniff
+kubectl-sniff-windows
+kubectl-sniff-darwin
+kubectl-sniff-darwin-arm64
+static-tcpdump
+ksniff.zip
+tcpdump-*
diff --git a/.bazelrc b/.bazelrc
new file mode 100644
index 0000000..996dd9c
--- /dev/null
+++ b/.bazelrc
@@ -0,0 +1,21 @@
+# Enable Bzlmod
+common --enable_bzlmod
+
+# Common build options
+build --incompatible_enable_cc_toolchain_resolution
+build --enable_platform_specific_config
+
+# Go specific options
+build --@rules_go//go/config:pure
+
+# Platform-specific configurations
+build:linux --platforms=@rules_go//go/toolchain:linux_amd64
+build:darwin --platforms=@rules_go//go/toolchain:darwin_amd64
+build:darwin_arm64 --platforms=@rules_go//go/toolchain:darwin_arm64
+build:windows --platforms=@rules_go//go/toolchain:windows_amd64
+
+# Test output
+test --test_output=errors
+
+# Performance
+build --jobs=auto
diff --git a/.bazelversion b/.bazelversion
new file mode 100644
index 0000000..e7fdef7
--- /dev/null
+++ b/.bazelversion
@@ -0,0 +1 @@
+8.4.2
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..54162a8
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,25 @@
+*~
+.#*
+
+# OS X Desktop Service Store
+.DS_Store
+
+.generated
+
+# Build and test process
+.coverage
+
+# bzlmod lockfile which is useless:
+# "Importantly, it only includes dependencies that are included in the current invocation of the build"
+/MODULE.bazel.lock
+
+/bazel-*
+
+# Local bazel overrides
+.bazelrc-local
+
+# Go
+go.mod
+go.sum
+!/go.mod
+!/go.sum
diff --git a/BUILD.bazel b/BUILD.bazel
new file mode 100644
index 0000000..0b987a0
--- /dev/null
+++ b/BUILD.bazel
@@ -0,0 +1,81 @@
+load("@gazelle//:def.bzl", "gazelle")
+load("@rules_go//go:def.bzl", "go_binary")
+
+# gazelle:prefix ksniff
+gazelle(name = "gazelle")
+
+# Linux binary
+go_binary(
+    name = "kubectl-sniff-linux",
+    embed = ["//cmd:kubectl-sniff_lib"],
+    goarch = "amd64",
+    goos = "linux",
+    pure = "on",
+    visibility = ["//visibility:public"],
+)
+
+# Darwin (macOS) binary - amd64
+go_binary(
+    name = "kubectl-sniff-darwin",
+    embed = ["//cmd:kubectl-sniff_lib"],
+    goarch = "amd64",
+    goos = "darwin",
+    pure = "on",
+    visibility = ["//visibility:public"],
+)
+
+# Darwin (macOS) binary - arm64
+go_binary(
+    name = "kubectl-sniff-darwin-arm64",
+    embed = ["//cmd:kubectl-sniff_lib"],
+    goarch = "arm64",
+    goos = "darwin",
+    pure = "on",
+    visibility = ["//visibility:public"],
+)
+
+# Windows binary
+go_binary(
+    name = "kubectl-sniff-windows",
+    embed = ["//cmd:kubectl-sniff_lib"],
+    goarch = "amd64",
+    goos = "windows",
+    pure = "on",
+    visibility = ["//visibility:public"],
+)
+
+# Default binary for current platform
+go_binary(
+    name = "kubectl-sniff",
+    embed = ["//cmd:kubectl-sniff_lib"],
+    pure = "on",
+    visibility = ["//visibility:public"],
+)
+
+# Static tcpdump binary
+# This target builds a statically-linked tcpdump binary from source.
+# On Linux: Builds a fully static tcpdump binary (equivalent to Makefile's static-tcpdump target)
+# On macOS/other: Creates a placeholder script explaining that this must be built on Linux
+#
+# Usage:
+#   bazel build //:static-tcpdump
+#
+# The binary will be available at:
+#   bazel-bin/external/+_repo_rules+tcpdump/tcpdump_bin
+alias(
+    name = "static-tcpdump",
+    actual = "@tcpdump//:tcpdump_bin",
+    visibility = ["//visibility:public"],
+)
+
+# Filegroup for all binaries
+filegroup(
+    name = "all-binaries",
+    srcs = [
+        ":kubectl-sniff-darwin",
+        ":kubectl-sniff-darwin-arm64",
+        ":kubectl-sniff-linux",
+        ":kubectl-sniff-windows",
+    ],
+    visibility = ["//visibility:public"],
+)
diff --git a/MODULE.bazel b/MODULE.bazel
new file mode 100644
index 0000000..033a230
--- /dev/null
+++ b/MODULE.bazel
@@ -0,0 +1,38 @@
+module(
+    name = "ksniff",
+    version = "0.0.0",
+)
+
+bazel_dep(name = "rules_go", version = "0.59.0")
+bazel_dep(name = "gazelle", version = "0.47.0")
+bazel_dep(name = "platforms", version = "1.0.0")
+
+go_sdk = use_extension("@rules_go//go:extensions.bzl", "go_sdk")
+go_sdk.download(version = "1.23.4")
+
+go_deps = use_extension("@gazelle//:extensions.bzl", "go_deps")
+go_deps.from_file(go_mod = "//:go.mod")
+
+# Use all Go dependencies
+use_repo(go_deps, "com_github_mitchellh_go_homedir")
+use_repo(go_deps, "com_github_pkg_errors")
+use_repo(go_deps, "com_github_sirupsen_logrus")
+use_repo(go_deps, "com_github_spf13_cobra")
+use_repo(go_deps, "com_github_spf13_pflag")
+use_repo(go_deps, "com_github_spf13_viper")
+use_repo(go_deps, "com_github_stretchr_testify")
+use_repo(go_deps, "io_k8s_api")
+use_repo(go_deps, "io_k8s_apimachinery")
+use_repo(go_deps, "io_k8s_cli_runtime")
+use_repo(go_deps, "io_k8s_client_go")
+
+# HTTP archive for tcpdump
+http_archive = use_repo_rule("@bazel_tools//tools/build_defs/repo:http.bzl", "http_archive")
+
+http_archive(
+    name = "tcpdump",
+    build_file = "//:tcpdump.BUILD",
+    sha256 = "798b3536a29832ce0cbb07fafb1ce5097c95e308a6f592d14052e1ef1505fe79",
+    strip_prefix = "tcpdump-4.9.2",
+    urls = ["https://www.tcpdump.org/release/tcpdump-4.9.2.tar.gz"],
+)
diff --git a/cmd/BUILD.bazel b/cmd/BUILD.bazel
new file mode 100644
index 0000000..c9ad7cb
--- /dev/null
+++ b/cmd/BUILD.bazel
@@ -0,0 +1,13 @@
+load("@rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "kubectl-sniff_lib",
+    srcs = ["kubectl-sniff.go"],
+    importpath = "ksniff/cmd",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//pkg/cmd",
+        "@com_github_spf13_pflag//:pflag",
+        "@io_k8s_cli_runtime//pkg/genericclioptions",
+    ],
+)
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html
new file mode 100644
index 0000000..de097d2
--- /dev/null
+++ b/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html
@@ -0,0 +1,98 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/pkg/cmd</title>
+  <link rel="stylesheet" type="text/css" href="../../../../../../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../../../../../../index.html" title="Click to go to top-level">top level</a> - /Users/mtl/Development/omnicate-ksniff/pkg/cmd</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryLo">52.4&nbsp;%</td>
+            <td class="headerCovTableEntry">349</td>
+            <td class="headerCovTableEntry">183</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><img src="../../../../../../glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="../../../../../../glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="sniff.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go">sniff.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../../../../../ruby.png" width=52 height=10 alt="52.4%"><img src="../../../../../../snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
+              </td>
+              <td class="coverPerLo">52.4&nbsp;%</td>
+              <td class="coverNumDflt">349</td>
+              <td class="coverNumDflt">183</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html
new file mode 100644
index 0000000..52058a8
--- /dev/null
+++ b/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html
@@ -0,0 +1,563 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go</title>
+  <link rel="stylesheet" type="text/css" href="../../../../../../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../../../../../../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd</a> - sniff.go</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryLo">52.4&nbsp;%</td>
+            <td class="headerCovTableEntry">349</td>
+            <td class="headerCovTableEntry">183</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <table cellpadding=0 cellspacing=0 border=0>
+            <tr>
+              <td><br></td>
+            </tr>
+            <tr>
+              <td>
+<pre class="sourceHeading">            Line data    Source code</pre>
+<pre class="source">
+<span id="L1"><span class="lineNum">       1</span>              : package cmd</span>
+<span id="L2"><span class="lineNum">       2</span>              : </span>
+<span id="L3"><span class="lineNum">       3</span>              : import (</span>
+<span id="L4"><span class="lineNum">       4</span>              :         &quot;context&quot;</span>
+<span id="L5"><span class="lineNum">       5</span>              :         &quot;fmt&quot;</span>
+<span id="L6"><span class="lineNum">       6</span>              :         &quot;io&quot;</span>
+<span id="L7"><span class="lineNum">       7</span>              :         &quot;os&quot;</span>
+<span id="L8"><span class="lineNum">       8</span>              :         &quot;os/exec&quot;</span>
+<span id="L9"><span class="lineNum">       9</span>              :         &quot;os/signal&quot;</span>
+<span id="L10"><span class="lineNum">      10</span>              :         &quot;path/filepath&quot;</span>
+<span id="L11"><span class="lineNum">      11</span>              :         &quot;strings&quot;</span>
+<span id="L12"><span class="lineNum">      12</span>              :         &quot;syscall&quot;</span>
+<span id="L13"><span class="lineNum">      13</span>              :         &quot;time&quot;</span>
+<span id="L14"><span class="lineNum">      14</span>              : </span>
+<span id="L15"><span class="lineNum">      15</span>              :         &quot;ksniff/kube&quot;</span>
+<span id="L16"><span class="lineNum">      16</span>              :         &quot;ksniff/pkg/config&quot;</span>
+<span id="L17"><span class="lineNum">      17</span>              :         &quot;ksniff/pkg/service/sniffer&quot;</span>
+<span id="L18"><span class="lineNum">      18</span>              :         &quot;ksniff/pkg/service/sniffer/runtime&quot;</span>
+<span id="L19"><span class="lineNum">      19</span>              : </span>
+<span id="L20"><span class="lineNum">      20</span>              :         &quot;github.com/mitchellh/go-homedir&quot;</span>
+<span id="L21"><span class="lineNum">      21</span>              :         &quot;github.com/pkg/errors&quot;</span>
+<span id="L22"><span class="lineNum">      22</span>              :         log &quot;github.com/sirupsen/logrus&quot;</span>
+<span id="L23"><span class="lineNum">      23</span>              :         &quot;github.com/spf13/cobra&quot;</span>
+<span id="L24"><span class="lineNum">      24</span>              :         &quot;github.com/spf13/viper&quot;</span>
+<span id="L25"><span class="lineNum">      25</span>              :         corev1 &quot;k8s.io/api/core/v1&quot;</span>
+<span id="L26"><span class="lineNum">      26</span>              :         v1 &quot;k8s.io/apimachinery/pkg/apis/meta/v1&quot;</span>
+<span id="L27"><span class="lineNum">      27</span>              :         &quot;k8s.io/cli-runtime/pkg/genericclioptions&quot;</span>
+<span id="L28"><span class="lineNum">      28</span>              :         &quot;k8s.io/client-go/kubernetes&quot;</span>
+<span id="L29"><span class="lineNum">      29</span>              :         &quot;k8s.io/client-go/rest&quot;</span>
+<span id="L30"><span class="lineNum">      30</span>              :         &quot;k8s.io/client-go/tools/clientcmd&quot;</span>
+<span id="L31"><span class="lineNum">      31</span>              :         &quot;k8s.io/client-go/tools/clientcmd/api&quot;</span>
+<span id="L32"><span class="lineNum">      32</span>              : </span>
+<span id="L33"><span class="lineNum">      33</span>              :         _ &quot;k8s.io/client-go/plugin/pkg/client/auth/azure&quot;</span>
+<span id="L34"><span class="lineNum">      34</span>              :         _ &quot;k8s.io/client-go/plugin/pkg/client/auth/gcp&quot;</span>
+<span id="L35"><span class="lineNum">      35</span>              :         _ &quot;k8s.io/client-go/plugin/pkg/client/auth/oidc&quot;</span>
+<span id="L36"><span class="lineNum">      36</span>              : )</span>
+<span id="L37"><span class="lineNum">      37</span>              : </span>
+<span id="L38"><span class="lineNum">      38</span>              : var (</span>
+<span id="L39"><span class="lineNum">      39</span>              :         ksniffExample = &quot;kubectl sniff hello-minikube-7c77b68cff-qbvsd -c hello-minikube&quot;</span>
+<span id="L40"><span class="lineNum">      40</span>              : )</span>
+<span id="L41"><span class="lineNum">      41</span>              : </span>
+<span id="L42"><span class="lineNum">      42</span>              : const minimumNumberOfArguments = 1</span>
+<span id="L43"><span class="lineNum">      43</span>              : const tcpdumpBinaryName = &quot;static-tcpdump&quot;</span>
+<span id="L44"><span class="lineNum">      44</span>              : const tcpdumpRemotePath = &quot;/tmp/static-tcpdump&quot;</span>
+<span id="L45"><span class="lineNum">      45</span>              : </span>
+<span id="L46"><span class="lineNum">      46</span>              : var tcpdumpLocalBinaryPathLookupList []string</span>
+<span id="L47"><span class="lineNum">      47</span>              : </span>
+<span id="L48"><span class="lineNum">      48</span>              : type Ksniff struct {</span>
+<span id="L49"><span class="lineNum">      49</span>              :         configFlags      *genericclioptions.ConfigFlags</span>
+<span id="L50"><span class="lineNum">      50</span>              :         resultingContext *api.Context</span>
+<span id="L51"><span class="lineNum">      51</span>              :         clientset        kubernetes.Interface</span>
+<span id="L52"><span class="lineNum">      52</span>              :         restConfig       *rest.Config</span>
+<span id="L53"><span class="lineNum">      53</span>              :         rawConfig        api.Config</span>
+<span id="L54"><span class="lineNum">      54</span>              :         settings         *config.KsniffSettings</span>
+<span id="L55"><span class="lineNum">      55</span>              :         snifferService   sniffer.SnifferService</span>
+<span id="L56"><span class="lineNum">      56</span>              :         wireshark        *exec.Cmd</span>
+<span id="L57"><span class="lineNum">      57</span>              : }</span>
+<span id="L58"><span class="lineNum">      58</span>              : </span>
+<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">          28 : func NewKsniff(settings *config.KsniffSettings) *Ksniff {</span></span>
+<span id="L60"><span class="lineNum">      60</span> <span class="tlaGNC">          28 :         return &amp;Ksniff{settings: settings, configFlags: genericclioptions.NewConfigFlags(true)}</span></span>
+<span id="L61"><span class="lineNum">      61</span> <span class="tlaGNC">          28 : }</span></span>
+<span id="L62"><span class="lineNum">      62</span>              : </span>
+<span id="L63"><span class="lineNum">      63</span> <span class="tlaGNC">          10 : func NewCmdSniff(streams genericclioptions.IOStreams) *cobra.Command {</span></span>
+<span id="L64"><span class="lineNum">      64</span> <span class="tlaGNC">          10 :         ksniffSettings := config.NewKsniffSettings(streams)</span></span>
+<span id="L65"><span class="lineNum">      65</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L66"><span class="lineNum">      66</span> <span class="tlaGNC">          10 :         ksniff := NewKsniff(ksniffSettings)</span></span>
+<span id="L67"><span class="lineNum">      67</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L68"><span class="lineNum">      68</span> <span class="tlaGNC">          10 :         cmd := &amp;cobra.Command{</span></span>
+<span id="L69"><span class="lineNum">      69</span> <span class="tlaGNC">          10 :                 Use:          &quot;sniff pod [-n namespace] [-c container] [-f filter] [-o output-file] [-l local-tcpdump-path] [-r remote-tcpdump-path]&quot;,</span></span>
+<span id="L70"><span class="lineNum">      70</span> <span class="tlaGNC">          10 :                 Short:        &quot;Perform network sniffing on a container running in a kubernetes cluster.&quot;,</span></span>
+<span id="L71"><span class="lineNum">      71</span> <span class="tlaGNC">          10 :                 Example:      ksniffExample,</span></span>
+<span id="L72"><span class="lineNum">      72</span> <span class="tlaGNC">          10 :                 SilenceUsage: true,</span></span>
+<span id="L73"><span class="lineNum">      73</span> <span class="tlaGNC">          10 :                 RunE: func(c *cobra.Command, args []string) error {</span></span>
+<span id="L74"><span class="lineNum">      74</span> <span class="tlaUNC">           0 :                         if err := ksniff.Complete(c, args); err != nil {</span></span>
+<span id="L75"><span class="lineNum">      75</span> <span class="tlaUNC">           0 :                                 return err</span></span>
+<span id="L76"><span class="lineNum">      76</span> <span class="tlaUNC">           0 :                         }</span></span>
+<span id="L77"><span class="lineNum">      77</span> <span class="tlaUNC">           0 :                         if err := ksniff.Validate(); err != nil {</span></span>
+<span id="L78"><span class="lineNum">      78</span> <span class="tlaUNC">           0 :                                 return err</span></span>
+<span id="L79"><span class="lineNum">      79</span> <span class="tlaUNC">           0 :                         }</span></span>
+<span id="L80"><span class="lineNum">      80</span> <span class="tlaUNC">           0 :                         if err := ksniff.Run(); err != nil {</span></span>
+<span id="L81"><span class="lineNum">      81</span> <span class="tlaUNC">           0 :                                 return err</span></span>
+<span id="L82"><span class="lineNum">      82</span> <span class="tlaUNC">           0 :                         }</span></span>
+<span id="L83"><span class="lineNum">      83</span>              : </span>
+<span id="L84"><span class="lineNum">      84</span> <span class="tlaUNC">           0 :                         return nil</span></span>
+<span id="L85"><span class="lineNum">      85</span>              :                 },</span>
+<span id="L86"><span class="lineNum">      86</span>              :         }</span>
+<span id="L87"><span class="lineNum">      87</span>              : </span>
+<span id="L88"><span class="lineNum">      88</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedNamespace, &quot;namespace&quot;, &quot;n&quot;, &quot;&quot;, &quot;namespace (optional)&quot;)</span></span>
+<span id="L89"><span class="lineNum">      89</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;namespace&quot;, &quot;KUBECTL_PLUGINS_CURRENT_NAMESPACE&quot;)</span></span>
+<span id="L90"><span class="lineNum">      90</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;namespace&quot;, cmd.Flags().Lookup(&quot;namespace&quot;))</span></span>
+<span id="L91"><span class="lineNum">      91</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L92"><span class="lineNum">      92</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedInterface, &quot;interface&quot;, &quot;i&quot;, &quot;any&quot;, &quot;pod interface to packet capture (optional)&quot;)</span></span>
+<span id="L93"><span class="lineNum">      93</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;interface&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_INTERFACE&quot;)</span></span>
+<span id="L94"><span class="lineNum">      94</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;interface&quot;, cmd.Flags().Lookup(&quot;interface&quot;))</span></span>
+<span id="L95"><span class="lineNum">      95</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L96"><span class="lineNum">      96</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedContainer, &quot;container&quot;, &quot;c&quot;, &quot;&quot;, &quot;container (optional)&quot;)</span></span>
+<span id="L97"><span class="lineNum">      97</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;container&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_CONTAINER&quot;)</span></span>
+<span id="L98"><span class="lineNum">      98</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;container&quot;, cmd.Flags().Lookup(&quot;container&quot;))</span></span>
+<span id="L99"><span class="lineNum">      99</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L100"><span class="lineNum">     100</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedFilter, &quot;filter&quot;, &quot;f&quot;, &quot;&quot;, &quot;tcpdump filter (optional)&quot;)</span></span>
+<span id="L101"><span class="lineNum">     101</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;filter&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_FILTER&quot;)</span></span>
+<span id="L102"><span class="lineNum">     102</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;filter&quot;, cmd.Flags().Lookup(&quot;filter&quot;))</span></span>
+<span id="L103"><span class="lineNum">     103</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L104"><span class="lineNum">     104</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedOutputFile, &quot;output-file&quot;, &quot;o&quot;, &quot;&quot;,</span></span>
+<span id="L105"><span class="lineNum">     105</span> <span class="tlaGNC">          10 :                 &quot;output file path, tcpdump output will be redirect to this file instead of wireshark (optional) ('-' stdout)&quot;)</span></span>
+<span id="L106"><span class="lineNum">     106</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;output-file&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_OUTPUT_FILE&quot;)</span></span>
+<span id="L107"><span class="lineNum">     107</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;output-file&quot;, cmd.Flags().Lookup(&quot;output-file&quot;))</span></span>
+<span id="L108"><span class="lineNum">     108</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L109"><span class="lineNum">     109</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedLocalTcpdumpPath, &quot;local-tcpdump-path&quot;, &quot;l&quot;, &quot;&quot;,</span></span>
+<span id="L110"><span class="lineNum">     110</span> <span class="tlaGNC">          10 :                 &quot;local static tcpdump binary path (optional)&quot;)</span></span>
+<span id="L111"><span class="lineNum">     111</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;local-tcpdump-path&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_LOCAL_TCPDUMP_PATH&quot;)</span></span>
+<span id="L112"><span class="lineNum">     112</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;local-tcpdump-path&quot;, cmd.Flags().Lookup(&quot;local-tcpdump-path&quot;))</span></span>
+<span id="L113"><span class="lineNum">     113</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L114"><span class="lineNum">     114</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedRemoteTcpdumpPath, &quot;remote-tcpdump-path&quot;, &quot;r&quot;, tcpdumpRemotePath,</span></span>
+<span id="L115"><span class="lineNum">     115</span> <span class="tlaGNC">          10 :                 &quot;remote static tcpdump binary path (optional)&quot;)</span></span>
+<span id="L116"><span class="lineNum">     116</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;remote-tcpdump-path&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_REMOTE_TCPDUMP_PATH&quot;)</span></span>
+<span id="L117"><span class="lineNum">     117</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;remote-tcpdump-path&quot;, cmd.Flags().Lookup(&quot;remote-tcpdump-path&quot;))</span></span>
+<span id="L118"><span class="lineNum">     118</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L119"><span class="lineNum">     119</span> <span class="tlaGNC">          10 :         cmd.Flags().BoolVarP(&amp;ksniffSettings.UserSpecifiedVerboseMode, &quot;verbose&quot;, &quot;v&quot;, false,</span></span>
+<span id="L120"><span class="lineNum">     120</span> <span class="tlaGNC">          10 :                 &quot;if specified, ksniff output will include debug information (optional)&quot;)</span></span>
+<span id="L121"><span class="lineNum">     121</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;verbose&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_VERBOSE&quot;)</span></span>
+<span id="L122"><span class="lineNum">     122</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;verbose&quot;, cmd.Flags().Lookup(&quot;verbose&quot;))</span></span>
+<span id="L123"><span class="lineNum">     123</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L124"><span class="lineNum">     124</span> <span class="tlaGNC">          10 :         cmd.Flags().BoolVarP(&amp;ksniffSettings.UserSpecifiedPrivilegedMode, &quot;privileged&quot;, &quot;p&quot;, false,</span></span>
+<span id="L125"><span class="lineNum">     125</span> <span class="tlaGNC">          10 :                 &quot;if specified, ksniff will deploy another pod that have privileges to attach target pod network namespace&quot;)</span></span>
+<span id="L126"><span class="lineNum">     126</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;privileged&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_PRIVILEGED&quot;)</span></span>
+<span id="L127"><span class="lineNum">     127</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;privileged&quot;, cmd.Flags().Lookup(&quot;privileged&quot;))</span></span>
+<span id="L128"><span class="lineNum">     128</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L129"><span class="lineNum">     129</span> <span class="tlaGNC">          10 :         cmd.Flags().DurationVarP(&amp;ksniffSettings.UserSpecifiedPodCreateTimeout, &quot;pod-creation-timeout&quot;, &quot;&quot;,</span></span>
+<span id="L130"><span class="lineNum">     130</span> <span class="tlaGNC">          10 :                 1*time.Minute, &quot;the length of time to wait for privileged pod to be created (e.g. 20s, 2m, 1h). &quot;+</span></span>
+<span id="L131"><span class="lineNum">     131</span> <span class="tlaGNC">          10 :                         &quot;A value of zero means the creation never times out.&quot;)</span></span>
+<span id="L132"><span class="lineNum">     132</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L133"><span class="lineNum">     133</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.Image, &quot;image&quot;, &quot;&quot;, &quot;&quot;,</span></span>
+<span id="L134"><span class="lineNum">     134</span> <span class="tlaGNC">          10 :                 &quot;the privileged container image (optional)&quot;)</span></span>
+<span id="L135"><span class="lineNum">     135</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;image&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_IMAGE&quot;)</span></span>
+<span id="L136"><span class="lineNum">     136</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;image&quot;, cmd.Flags().Lookup(&quot;image&quot;))</span></span>
+<span id="L137"><span class="lineNum">     137</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L138"><span class="lineNum">     138</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.TCPDumpImage, &quot;tcpdump-image&quot;, &quot;&quot;, &quot;&quot;,</span></span>
+<span id="L139"><span class="lineNum">     139</span> <span class="tlaGNC">          10 :                 &quot;the tcpdump container image (optional)&quot;)</span></span>
+<span id="L140"><span class="lineNum">     140</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;tcpdump-image&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_TCPDUMP_IMAGE&quot;)</span></span>
+<span id="L141"><span class="lineNum">     141</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;tcpdump-image&quot;, cmd.Flags().Lookup(&quot;tcpdump-image&quot;))</span></span>
+<span id="L142"><span class="lineNum">     142</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L143"><span class="lineNum">     143</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedKubeContext, &quot;context&quot;, &quot;x&quot;, &quot;&quot;,</span></span>
+<span id="L144"><span class="lineNum">     144</span> <span class="tlaGNC">          10 :                 &quot;kubectl context to work on (optional)&quot;)</span></span>
+<span id="L145"><span class="lineNum">     145</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;context&quot;, &quot;KUBECTL_PLUGINS_CURRENT_CONTEXT&quot;)</span></span>
+<span id="L146"><span class="lineNum">     146</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;context&quot;, cmd.Flags().Lookup(&quot;context&quot;))</span></span>
+<span id="L147"><span class="lineNum">     147</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L148"><span class="lineNum">     148</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.SocketPath, &quot;socket&quot;, &quot;&quot;, &quot;&quot;,</span></span>
+<span id="L149"><span class="lineNum">     149</span> <span class="tlaGNC">          10 :                 &quot;the container runtime socket path (optional)&quot;)</span></span>
+<span id="L150"><span class="lineNum">     150</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;socket&quot;, &quot;KUBECTL_PLUGINS_SOCKET_PATH&quot;)</span></span>
+<span id="L151"><span class="lineNum">     151</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;socket&quot;, cmd.Flags().Lookup(&quot;socket&quot;))</span></span>
+<span id="L152"><span class="lineNum">     152</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L153"><span class="lineNum">     153</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedServiceAccount, &quot;serviceaccount&quot;, &quot;s&quot;, &quot;&quot;,</span></span>
+<span id="L154"><span class="lineNum">     154</span> <span class="tlaGNC">          10 :                 &quot;the privileged container service account (optional)&quot;)</span></span>
+<span id="L155"><span class="lineNum">     155</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;serviceaccount&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_SERVICE_ACCOUNT&quot;)</span></span>
+<span id="L156"><span class="lineNum">     156</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;serviceaccount&quot;, cmd.Flags().Lookup(&quot;serviceaccount&quot;))</span></span>
+<span id="L157"><span class="lineNum">     157</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L158"><span class="lineNum">     158</span> <span class="tlaGNC">          10 :         return cmd</span></span>
+<span id="L159"><span class="lineNum">     159</span>              : }</span>
+<span id="L160"><span class="lineNum">     160</span>              : </span>
+<span id="L161"><span class="lineNum">     161</span> <span class="tlaGNC">           2 : func (o *Ksniff) Complete(cmd *cobra.Command, args []string) error {</span></span>
+<span id="L162"><span class="lineNum">     162</span> <span class="tlaGNC">           2 :         // Validate and populate basic settings</span></span>
+<span id="L163"><span class="lineNum">     163</span> <span class="tlaGNC">           2 :         if err := o.completeBasicSettings(cmd, args); err != nil {</span></span>
+<span id="L164"><span class="lineNum">     164</span> <span class="tlaGNC">           2 :                 return err</span></span>
+<span id="L165"><span class="lineNum">     165</span> <span class="tlaGNC">           2 :         }</span></span>
+<span id="L166"><span class="lineNum">     166</span>              : </span>
+<span id="L167"><span class="lineNum">     167</span>              :         // Load Kubernetes configuration</span>
+<span id="L168"><span class="lineNum">     168</span> <span class="tlaUNC">           0 :         if err := o.loadKubeConfig(); err != nil {</span></span>
+<span id="L169"><span class="lineNum">     169</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L170"><span class="lineNum">     170</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L171"><span class="lineNum">     171</span>              : </span>
+<span id="L172"><span class="lineNum">     172</span> <span class="tlaUNC">           0 :         return nil</span></span>
+<span id="L173"><span class="lineNum">     173</span>              : }</span>
+<span id="L174"><span class="lineNum">     174</span>              : </span>
+<span id="L175"><span class="lineNum">     175</span>              : // completeBasicSettings validates arguments and populates settings from viper</span>
+<span id="L176"><span class="lineNum">     176</span>              : // This method doesn't require Kubernetes configuration and can be tested independently</span>
+<span id="L177"><span class="lineNum">     177</span> <span class="tlaGNC">          12 : func (o *Ksniff) completeBasicSettings(cmd *cobra.Command, args []string) error {</span></span>
+<span id="L178"><span class="lineNum">     178</span> <span class="tlaGNC">          12 :         if len(args) &lt; minimumNumberOfArguments {</span></span>
+<span id="L179"><span class="lineNum">     179</span> <span class="tlaGNC">           1 :                 _ = cmd.Usage()</span></span>
+<span id="L180"><span class="lineNum">     180</span> <span class="tlaGNC">           1 :                 return errors.New(&quot;not enough arguments&quot;)</span></span>
+<span id="L181"><span class="lineNum">     181</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L182"><span class="lineNum">     182</span>              : </span>
+<span id="L183"><span class="lineNum">     183</span> <span class="tlaGNC">          11 :         o.settings.UserSpecifiedPodName = args[0]</span></span>
+<span id="L184"><span class="lineNum">     184</span> <span class="tlaGNC">          11 :         if o.settings.UserSpecifiedPodName == &quot;&quot; {</span></span>
+<span id="L185"><span class="lineNum">     185</span> <span class="tlaGNC">           1 :                 return errors.New(&quot;pod name is empty&quot;)</span></span>
+<span id="L186"><span class="lineNum">     186</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L187"><span class="lineNum">     187</span>              : </span>
+<span id="L188"><span class="lineNum">     188</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedNamespace = viper.GetString(&quot;namespace&quot;)</span></span>
+<span id="L189"><span class="lineNum">     189</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedContainer = viper.GetString(&quot;container&quot;)</span></span>
+<span id="L190"><span class="lineNum">     190</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedInterface = viper.GetString(&quot;interface&quot;)</span></span>
+<span id="L191"><span class="lineNum">     191</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedFilter = viper.GetString(&quot;filter&quot;)</span></span>
+<span id="L192"><span class="lineNum">     192</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedOutputFile = viper.GetString(&quot;output-file&quot;)</span></span>
+<span id="L193"><span class="lineNum">     193</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedLocalTcpdumpPath = viper.GetString(&quot;local-tcpdump-path&quot;)</span></span>
+<span id="L194"><span class="lineNum">     194</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedRemoteTcpdumpPath = viper.GetString(&quot;remote-tcpdump-path&quot;)</span></span>
+<span id="L195"><span class="lineNum">     195</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedVerboseMode = viper.GetBool(&quot;verbose&quot;)</span></span>
+<span id="L196"><span class="lineNum">     196</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedPrivilegedMode = viper.GetBool(&quot;privileged&quot;)</span></span>
+<span id="L197"><span class="lineNum">     197</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedKubeContext = viper.GetString(&quot;context&quot;)</span></span>
+<span id="L198"><span class="lineNum">     198</span> <span class="tlaGNC">          10 :         o.settings.Image = viper.GetString(&quot;image&quot;)</span></span>
+<span id="L199"><span class="lineNum">     199</span> <span class="tlaGNC">          10 :         o.settings.TCPDumpImage = viper.GetString(&quot;tcpdump-image&quot;)</span></span>
+<span id="L200"><span class="lineNum">     200</span> <span class="tlaGNC">          10 :         o.settings.SocketPath = viper.GetString(&quot;socket&quot;)</span></span>
+<span id="L201"><span class="lineNum">     201</span> <span class="tlaGNC">          10 :         o.settings.UseDefaultImage = !viper.IsSet(&quot;image&quot;)</span></span>
+<span id="L202"><span class="lineNum">     202</span> <span class="tlaGNC">          10 :         o.settings.UseDefaultTCPDumpImage = !viper.IsSet(&quot;tcpdump-image&quot;)</span></span>
+<span id="L203"><span class="lineNum">     203</span> <span class="tlaGNC">          10 :         o.settings.UseDefaultSocketPath = !viper.IsSet(&quot;socket&quot;)</span></span>
+<span id="L204"><span class="lineNum">     204</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedServiceAccount = viper.GetString(&quot;serviceaccount&quot;)</span></span>
+<span id="L205"><span class="lineNum">     205</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L206"><span class="lineNum">     206</span> <span class="tlaGNC">          10 :         if o.settings.UserSpecifiedVerboseMode {</span></span>
+<span id="L207"><span class="lineNum">     207</span> <span class="tlaGNC">           1 :                 log.Info(&quot;running in verbose mode&quot;)</span></span>
+<span id="L208"><span class="lineNum">     208</span> <span class="tlaGNC">           1 :                 log.SetLevel(log.DebugLevel)</span></span>
+<span id="L209"><span class="lineNum">     209</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L210"><span class="lineNum">     210</span>              : </span>
+<span id="L211"><span class="lineNum">     211</span> <span class="tlaGNC">          10 :         var err error</span></span>
+<span id="L212"><span class="lineNum">     212</span> <span class="tlaGNC">          10 :         tcpdumpLocalBinaryPathLookupList, err = o.buildTcpdumpBinaryPathLookupList()</span></span>
+<span id="L213"><span class="lineNum">     213</span> <span class="tlaGNC">          10 :         if err != nil {</span></span>
+<span id="L214"><span class="lineNum">     214</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L215"><span class="lineNum">     215</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L216"><span class="lineNum">     216</span>              : </span>
+<span id="L217"><span class="lineNum">     217</span> <span class="tlaGNC">          10 :         return nil</span></span>
+<span id="L218"><span class="lineNum">     218</span>              : }</span>
+<span id="L219"><span class="lineNum">     219</span>              : </span>
+<span id="L220"><span class="lineNum">     220</span>              : // loadKubeConfig loads the Kubernetes configuration and initializes the clientset</span>
+<span id="L221"><span class="lineNum">     221</span>              : // This method is separated to allow for easier testing and mocking</span>
+<span id="L222"><span class="lineNum">     222</span> <span class="tlaUNC">           0 : func (o *Ksniff) loadKubeConfig() error {</span></span>
+<span id="L223"><span class="lineNum">     223</span> <span class="tlaUNC">           0 :         var err error</span></span>
+<span id="L224"><span class="lineNum">     224</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L225"><span class="lineNum">     225</span> <span class="tlaUNC">           0 :         o.rawConfig, err = o.configFlags.ToRawKubeConfigLoader().RawConfig()</span></span>
+<span id="L226"><span class="lineNum">     226</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
+<span id="L227"><span class="lineNum">     227</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L228"><span class="lineNum">     228</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L229"><span class="lineNum">     229</span>              : </span>
+<span id="L230"><span class="lineNum">     230</span> <span class="tlaUNC">           0 :         var currentContext *api.Context</span></span>
+<span id="L231"><span class="lineNum">     231</span> <span class="tlaUNC">           0 :         var exists bool</span></span>
+<span id="L232"><span class="lineNum">     232</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L233"><span class="lineNum">     233</span> <span class="tlaUNC">           0 :         if o.settings.UserSpecifiedKubeContext != &quot;&quot; {</span></span>
+<span id="L234"><span class="lineNum">     234</span> <span class="tlaUNC">           0 :                 currentContext, exists = o.rawConfig.Contexts[o.settings.UserSpecifiedKubeContext]</span></span>
+<span id="L235"><span class="lineNum">     235</span> <span class="tlaUNC">           0 :         } else {</span></span>
+<span id="L236"><span class="lineNum">     236</span> <span class="tlaUNC">           0 :                 currentContext, exists = o.rawConfig.Contexts[o.rawConfig.CurrentContext]</span></span>
+<span id="L237"><span class="lineNum">     237</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L238"><span class="lineNum">     238</span>              : </span>
+<span id="L239"><span class="lineNum">     239</span> <span class="tlaUNC">           0 :         if !exists {</span></span>
+<span id="L240"><span class="lineNum">     240</span> <span class="tlaUNC">           0 :                 return errors.New(&quot;context doesn't exist&quot;)</span></span>
+<span id="L241"><span class="lineNum">     241</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L242"><span class="lineNum">     242</span>              : </span>
+<span id="L243"><span class="lineNum">     243</span> <span class="tlaUNC">           0 :         loadingRules := clientcmd.NewDefaultClientConfigLoadingRules()</span></span>
+<span id="L244"><span class="lineNum">     244</span> <span class="tlaUNC">           0 :         configOverrides := &amp;clientcmd.ConfigOverrides{</span></span>
+<span id="L245"><span class="lineNum">     245</span> <span class="tlaUNC">           0 :                 CurrentContext: o.settings.UserSpecifiedKubeContext,</span></span>
+<span id="L246"><span class="lineNum">     246</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L247"><span class="lineNum">     247</span> <span class="tlaUNC">           0 :         kubeConfig := clientcmd.NewNonInteractiveDeferredLoadingClientConfig(loadingRules, configOverrides)</span></span>
+<span id="L248"><span class="lineNum">     248</span> <span class="tlaUNC">           0 :         o.restConfig, err = kubeConfig.ClientConfig()</span></span>
+<span id="L249"><span class="lineNum">     249</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
+<span id="L250"><span class="lineNum">     250</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L251"><span class="lineNum">     251</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L252"><span class="lineNum">     252</span>              : </span>
+<span id="L253"><span class="lineNum">     253</span> <span class="tlaUNC">           0 :         o.restConfig.Timeout = 30 * time.Second</span></span>
+<span id="L254"><span class="lineNum">     254</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L255"><span class="lineNum">     255</span> <span class="tlaUNC">           0 :         o.clientset, err = kubernetes.NewForConfig(o.restConfig)</span></span>
+<span id="L256"><span class="lineNum">     256</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
+<span id="L257"><span class="lineNum">     257</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L258"><span class="lineNum">     258</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L259"><span class="lineNum">     259</span>              : </span>
+<span id="L260"><span class="lineNum">     260</span> <span class="tlaUNC">           0 :         o.resultingContext = currentContext.DeepCopy()</span></span>
+<span id="L261"><span class="lineNum">     261</span> <span class="tlaUNC">           0 :         if o.settings.UserSpecifiedNamespace != &quot;&quot; {</span></span>
+<span id="L262"><span class="lineNum">     262</span> <span class="tlaUNC">           0 :                 o.resultingContext.Namespace = o.settings.UserSpecifiedNamespace</span></span>
+<span id="L263"><span class="lineNum">     263</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L264"><span class="lineNum">     264</span>              : </span>
+<span id="L265"><span class="lineNum">     265</span> <span class="tlaUNC">           0 :         return nil</span></span>
+<span id="L266"><span class="lineNum">     266</span>              : }</span>
+<span id="L267"><span class="lineNum">     267</span>              : </span>
+<span id="L268"><span class="lineNum">     268</span> <span class="tlaGNC">          10 : func (o *Ksniff) buildTcpdumpBinaryPathLookupList() ([]string, error) {</span></span>
+<span id="L269"><span class="lineNum">     269</span> <span class="tlaGNC">          10 :         userHomeDir, err := homedir.Dir()</span></span>
+<span id="L270"><span class="lineNum">     270</span> <span class="tlaGNC">          10 :         if err != nil {</span></span>
+<span id="L271"><span class="lineNum">     271</span> <span class="tlaUNC">           0 :                 return nil, err</span></span>
+<span id="L272"><span class="lineNum">     272</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L273"><span class="lineNum">     273</span>              : </span>
+<span id="L274"><span class="lineNum">     274</span> <span class="tlaGNC">          10 :         ksniffBinaryPath, err := filepath.EvalSymlinks(os.Args[0])</span></span>
+<span id="L275"><span class="lineNum">     275</span> <span class="tlaGNC">          10 :         if err != nil {</span></span>
+<span id="L276"><span class="lineNum">     276</span> <span class="tlaUNC">           0 :                 return nil, err</span></span>
+<span id="L277"><span class="lineNum">     277</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L278"><span class="lineNum">     278</span>              : </span>
+<span id="L279"><span class="lineNum">     279</span> <span class="tlaGNC">          10 :         ksniffBinaryDir := filepath.Dir(ksniffBinaryPath)</span></span>
+<span id="L280"><span class="lineNum">     280</span> <span class="tlaGNC">          10 :         ksniffBinaryPath = filepath.Join(ksniffBinaryDir, tcpdumpBinaryName)</span></span>
+<span id="L281"><span class="lineNum">     281</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L282"><span class="lineNum">     282</span> <span class="tlaGNC">          10 :         kubeKsniffPluginFolder := filepath.Join(userHomeDir, filepath.FromSlash(&quot;/.kube/plugin/sniff/&quot;), tcpdumpBinaryName)</span></span>
+<span id="L283"><span class="lineNum">     283</span> <span class="tlaGNC">          10 : </span></span>
+<span id="L284"><span class="lineNum">     284</span> <span class="tlaGNC">          10 :         return append([]string{o.settings.UserSpecifiedLocalTcpdumpPath, ksniffBinaryPath},</span></span>
+<span id="L285"><span class="lineNum">     285</span> <span class="tlaGNC">          10 :                 filepath.Join(&quot;/usr/local/bin/&quot;, tcpdumpBinaryName), kubeKsniffPluginFolder), nil</span></span>
+<span id="L286"><span class="lineNum">     286</span>              : }</span>
+<span id="L287"><span class="lineNum">     287</span>              : </span>
+<span id="L288"><span class="lineNum">     288</span> <span class="tlaGNC">           6 : func (o *Ksniff) Validate() error {</span></span>
+<span id="L289"><span class="lineNum">     289</span> <span class="tlaGNC">           6 :         if len(o.rawConfig.CurrentContext) == 0 {</span></span>
+<span id="L290"><span class="lineNum">     290</span> <span class="tlaUNC">           0 :                 return errors.New(&quot;context doesn't exist&quot;)</span></span>
+<span id="L291"><span class="lineNum">     291</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L292"><span class="lineNum">     292</span>              : </span>
+<span id="L293"><span class="lineNum">     293</span> <span class="tlaGNC">           6 :         if o.resultingContext.Namespace == &quot;&quot; {</span></span>
+<span id="L294"><span class="lineNum">     294</span> <span class="tlaUNC">           0 :                 return errors.New(&quot;namespace value is empty should be custom or default&quot;)</span></span>
+<span id="L295"><span class="lineNum">     295</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L296"><span class="lineNum">     296</span>              : </span>
+<span id="L297"><span class="lineNum">     297</span> <span class="tlaGNC">           6 :         var err error</span></span>
+<span id="L298"><span class="lineNum">     298</span> <span class="tlaGNC">           6 : </span></span>
+<span id="L299"><span class="lineNum">     299</span> <span class="tlaGNC">           6 :         if !o.settings.UserSpecifiedPrivilegedMode {</span></span>
+<span id="L300"><span class="lineNum">     300</span> <span class="tlaUNC">           0 :                 o.settings.UserSpecifiedLocalTcpdumpPath, err = findLocalTcpdumpBinaryPath()</span></span>
+<span id="L301"><span class="lineNum">     301</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
+<span id="L302"><span class="lineNum">     302</span> <span class="tlaUNC">           0 :                         return err</span></span>
+<span id="L303"><span class="lineNum">     303</span> <span class="tlaUNC">           0 :                 }</span></span>
+<span id="L304"><span class="lineNum">     304</span>              : </span>
+<span id="L305"><span class="lineNum">     305</span> <span class="tlaUNC">           0 :                 log.Infof(&quot;using tcpdump path at: '%s'&quot;, o.settings.UserSpecifiedLocalTcpdumpPath)</span></span>
+<span id="L306"><span class="lineNum">     306</span> <span class="tlaGNC">           6 :         } else if o.settings.UserSpecifiedServiceAccount != &quot;&quot; {</span></span>
+<span id="L307"><span class="lineNum">     307</span> <span class="tlaUNC">           0 :                 _, err := o.clientset.CoreV1().ServiceAccounts(o.resultingContext.Namespace).Get(context.TODO(), o.settings.UserSpecifiedServiceAccount, v1.GetOptions{})</span></span>
+<span id="L308"><span class="lineNum">     308</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
+<span id="L309"><span class="lineNum">     309</span> <span class="tlaUNC">           0 :                         return err</span></span>
+<span id="L310"><span class="lineNum">     310</span> <span class="tlaUNC">           0 :                 }</span></span>
+<span id="L311"><span class="lineNum">     311</span>              :         }</span>
+<span id="L312"><span class="lineNum">     312</span>              : </span>
+<span id="L313"><span class="lineNum">     313</span> <span class="tlaGNC">           6 :         pod, err := o.clientset.CoreV1().Pods(o.resultingContext.Namespace).Get(context.TODO(), o.settings.UserSpecifiedPodName, v1.GetOptions{})</span></span>
+<span id="L314"><span class="lineNum">     314</span> <span class="tlaGNC">           6 :         if err != nil {</span></span>
+<span id="L315"><span class="lineNum">     315</span> <span class="tlaGNC">           1 :                 return err</span></span>
+<span id="L316"><span class="lineNum">     316</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L317"><span class="lineNum">     317</span>              : </span>
+<span id="L318"><span class="lineNum">     318</span> <span class="tlaGNC">           5 :         if pod.Status.Phase == corev1.PodSucceeded || pod.Status.Phase == corev1.PodFailed {</span></span>
+<span id="L319"><span class="lineNum">     319</span> <span class="tlaGNC">           1 :                 return errors.Errorf(&quot;cannot sniff on a container in a completed pod; current phase is %s&quot;, pod.Status.Phase)</span></span>
+<span id="L320"><span class="lineNum">     320</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L321"><span class="lineNum">     321</span>              : </span>
+<span id="L322"><span class="lineNum">     322</span> <span class="tlaGNC">           4 :         o.settings.DetectedPodNodeName = pod.Spec.NodeName</span></span>
+<span id="L323"><span class="lineNum">     323</span> <span class="tlaGNC">           4 : </span></span>
+<span id="L324"><span class="lineNum">     324</span> <span class="tlaGNC">           4 :         log.Debugf(&quot;pod '%s' status: '%s'&quot;, o.settings.UserSpecifiedPodName, pod.Status.Phase)</span></span>
+<span id="L325"><span class="lineNum">     325</span> <span class="tlaGNC">           4 : </span></span>
+<span id="L326"><span class="lineNum">     326</span> <span class="tlaGNC">           4 :         if len(pod.Spec.Containers) &lt; 1 {</span></span>
+<span id="L327"><span class="lineNum">     327</span> <span class="tlaGNC">           1 :                 return errors.New(&quot;no containers in specified pod&quot;)</span></span>
+<span id="L328"><span class="lineNum">     328</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L329"><span class="lineNum">     329</span>              : </span>
+<span id="L330"><span class="lineNum">     330</span> <span class="tlaGNC">           3 :         if o.settings.UserSpecifiedContainer == &quot;&quot; {</span></span>
+<span id="L331"><span class="lineNum">     331</span> <span class="tlaGNC">           1 :                 log.Info(&quot;no container specified, taking first container we found in pod.&quot;)</span></span>
+<span id="L332"><span class="lineNum">     332</span> <span class="tlaGNC">           1 :                 o.settings.UserSpecifiedContainer = pod.Spec.Containers[0].Name</span></span>
+<span id="L333"><span class="lineNum">     333</span> <span class="tlaGNC">           1 :                 log.Infof(&quot;selected container: '%s'&quot;, o.settings.UserSpecifiedContainer)</span></span>
+<span id="L334"><span class="lineNum">     334</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L335"><span class="lineNum">     335</span>              : </span>
+<span id="L336"><span class="lineNum">     336</span> <span class="tlaGNC">           3 :         if err := o.findContainerId(pod); err != nil {</span></span>
+<span id="L337"><span class="lineNum">     337</span> <span class="tlaGNC">           1 :                 return err</span></span>
+<span id="L338"><span class="lineNum">     338</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L339"><span class="lineNum">     339</span>              : </span>
+<span id="L340"><span class="lineNum">     340</span> <span class="tlaGNC">           2 :         kubernetesApiService := kube.NewKubernetesApiService(o.clientset, o.restConfig, o.resultingContext.Namespace)</span></span>
+<span id="L341"><span class="lineNum">     341</span> <span class="tlaGNC">           2 : </span></span>
+<span id="L342"><span class="lineNum">     342</span> <span class="tlaGNC">           2 :         if o.settings.UserSpecifiedPrivilegedMode {</span></span>
+<span id="L343"><span class="lineNum">     343</span> <span class="tlaGNC">           2 :                 log.Info(&quot;sniffing method: privileged pod&quot;)</span></span>
+<span id="L344"><span class="lineNum">     344</span> <span class="tlaGNC">           2 :                 bridge := runtime.NewContainerRuntimeBridge(o.settings.DetectedContainerRuntime)</span></span>
+<span id="L345"><span class="lineNum">     345</span> <span class="tlaGNC">           2 :                 o.snifferService = sniffer.NewPrivilegedPodRemoteSniffingService(o.settings, kubernetesApiService, bridge)</span></span>
+<span id="L346"><span class="lineNum">     346</span> <span class="tlaGNC">           2 :         } else {</span></span>
+<span id="L347"><span class="lineNum">     347</span> <span class="tlaUNC">           0 :                 log.Info(&quot;sniffing method: upload static tcpdump&quot;)</span></span>
+<span id="L348"><span class="lineNum">     348</span> <span class="tlaUNC">           0 :                 o.snifferService = sniffer.NewUploadTcpdumpRemoteSniffingService(o.settings, kubernetesApiService)</span></span>
+<span id="L349"><span class="lineNum">     349</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L350"><span class="lineNum">     350</span>              : </span>
+<span id="L351"><span class="lineNum">     351</span> <span class="tlaGNC">           2 :         return nil</span></span>
+<span id="L352"><span class="lineNum">     352</span>              : }</span>
+<span id="L353"><span class="lineNum">     353</span>              : </span>
+<span id="L354"><span class="lineNum">     354</span> <span class="tlaGNC">           3 : func (o *Ksniff) findContainerId(pod *corev1.Pod) error {</span></span>
+<span id="L355"><span class="lineNum">     355</span> <span class="tlaGNC">           3 :         for _, containerStatus := range pod.Status.ContainerStatuses {</span></span>
+<span id="L356"><span class="lineNum">     356</span> <span class="tlaGNC">           3 :                 if o.settings.UserSpecifiedContainer == containerStatus.Name {</span></span>
+<span id="L357"><span class="lineNum">     357</span> <span class="tlaGNC">           2 :                         result := strings.Split(containerStatus.ContainerID, &quot;://&quot;)</span></span>
+<span id="L358"><span class="lineNum">     358</span> <span class="tlaGNC">           2 :                         if len(result) != 2 {</span></span>
+<span id="L359"><span class="lineNum">     359</span> <span class="tlaUNC">           0 :                                 break</span></span>
+<span id="L360"><span class="lineNum">     360</span>              :                         }</span>
+<span id="L361"><span class="lineNum">     361</span> <span class="tlaGNC">           2 :                         o.settings.DetectedContainerRuntime = result[0]</span></span>
+<span id="L362"><span class="lineNum">     362</span> <span class="tlaGNC">           2 :                         o.settings.DetectedContainerId = result[1]</span></span>
+<span id="L363"><span class="lineNum">     363</span> <span class="tlaGNC">           2 :                         return nil</span></span>
+<span id="L364"><span class="lineNum">     364</span>              :                 }</span>
+<span id="L365"><span class="lineNum">     365</span>              :         }</span>
+<span id="L366"><span class="lineNum">     366</span>              : </span>
+<span id="L367"><span class="lineNum">     367</span> <span class="tlaGNC">           1 :         return errors.Errorf(&quot;couldn't find container: '%s' in pod: '%s'&quot;, o.settings.UserSpecifiedContainer, o.settings.UserSpecifiedPodName)</span></span>
+<span id="L368"><span class="lineNum">     368</span>              : }</span>
+<span id="L369"><span class="lineNum">     369</span>              : </span>
+<span id="L370"><span class="lineNum">     370</span> <span class="tlaUNC">           0 : func findLocalTcpdumpBinaryPath() (string, error) {</span></span>
+<span id="L371"><span class="lineNum">     371</span> <span class="tlaUNC">           0 :         log.Debugf(&quot;searching for tcpdump binary using lookup list: '%v'&quot;, tcpdumpLocalBinaryPathLookupList)</span></span>
+<span id="L372"><span class="lineNum">     372</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L373"><span class="lineNum">     373</span> <span class="tlaUNC">           0 :         for _, possibleTcpdumpPath := range tcpdumpLocalBinaryPathLookupList {</span></span>
+<span id="L374"><span class="lineNum">     374</span> <span class="tlaUNC">           0 :                 if _, err := os.Stat(possibleTcpdumpPath); err == nil {</span></span>
+<span id="L375"><span class="lineNum">     375</span> <span class="tlaUNC">           0 :                         log.Debugf(&quot;tcpdump binary found at: '%s'&quot;, possibleTcpdumpPath)</span></span>
+<span id="L376"><span class="lineNum">     376</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L377"><span class="lineNum">     377</span> <span class="tlaUNC">           0 :                         return possibleTcpdumpPath, nil</span></span>
+<span id="L378"><span class="lineNum">     378</span> <span class="tlaUNC">           0 :                 }</span></span>
+<span id="L379"><span class="lineNum">     379</span>              : </span>
+<span id="L380"><span class="lineNum">     380</span> <span class="tlaUNC">           0 :                 log.Debugf(&quot;tcpdump binary was not found at: '%s'&quot;, possibleTcpdumpPath)</span></span>
+<span id="L381"><span class="lineNum">     381</span>              :         }</span>
+<span id="L382"><span class="lineNum">     382</span>              : </span>
+<span id="L383"><span class="lineNum">     383</span> <span class="tlaUNC">           0 :         return &quot;&quot;, errors.Errorf(&quot;couldn't find static tcpdump binary on any of: '%v'&quot;, tcpdumpLocalBinaryPathLookupList)</span></span>
+<span id="L384"><span class="lineNum">     384</span>              : }</span>
+<span id="L385"><span class="lineNum">     385</span>              : </span>
+<span id="L386"><span class="lineNum">     386</span> <span class="tlaUNC">           0 : func (o *Ksniff) setupSignalHandler() chan interface{} {</span></span>
+<span id="L387"><span class="lineNum">     387</span> <span class="tlaUNC">           0 :         signals := make(chan os.Signal, 1)</span></span>
+<span id="L388"><span class="lineNum">     388</span> <span class="tlaUNC">           0 :         exit := make(chan interface{})</span></span>
+<span id="L389"><span class="lineNum">     389</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L390"><span class="lineNum">     390</span> <span class="tlaUNC">           0 :         signal.Notify(signals, syscall.SIGINT)</span></span>
+<span id="L391"><span class="lineNum">     391</span> <span class="tlaUNC">           0 :         go func() {</span></span>
+<span id="L392"><span class="lineNum">     392</span> <span class="tlaUNC">           0 :                 for {</span></span>
+<span id="L393"><span class="lineNum">     393</span> <span class="tlaUNC">           0 :                         select {</span></span>
+<span id="L394"><span class="lineNum">     394</span> <span class="tlaUNC">           0 :                         case sig := &lt;-signals:</span></span>
+<span id="L395"><span class="lineNum">     395</span> <span class="tlaUNC">           0 :                                 if sig == syscall.SIGINT || sig == syscall.SIGTERM {</span></span>
+<span id="L396"><span class="lineNum">     396</span> <span class="tlaUNC">           0 :                                         log.Info(&quot;starting sniffer cleanup&quot;)</span></span>
+<span id="L397"><span class="lineNum">     397</span> <span class="tlaUNC">           0 :                                         err := o.snifferService.Cleanup()</span></span>
+<span id="L398"><span class="lineNum">     398</span> <span class="tlaUNC">           0 :                                         if err != nil {</span></span>
+<span id="L399"><span class="lineNum">     399</span> <span class="tlaUNC">           0 :                                                 log.WithError(err).Error(&quot;failed to teardown sniffer, a manual teardown is required.&quot;)</span></span>
+<span id="L400"><span class="lineNum">     400</span> <span class="tlaUNC">           0 :                                         }</span></span>
+<span id="L401"><span class="lineNum">     401</span> <span class="tlaUNC">           0 :                                         log.Info(&quot;sniffer cleanup completed successfully&quot;)</span></span>
+<span id="L402"><span class="lineNum">     402</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L403"><span class="lineNum">     403</span> <span class="tlaUNC">           0 :                                         // Kill wireshark if used</span></span>
+<span id="L404"><span class="lineNum">     404</span> <span class="tlaUNC">           0 :                                         if o.wireshark != nil {</span></span>
+<span id="L405"><span class="lineNum">     405</span> <span class="tlaUNC">           0 :                                                 if o.wireshark.Process != nil {</span></span>
+<span id="L406"><span class="lineNum">     406</span> <span class="tlaUNC">           0 :                                                         err = o.wireshark.Process.Kill()</span></span>
+<span id="L407"><span class="lineNum">     407</span> <span class="tlaUNC">           0 :                                                         if err != nil &amp;&amp; err != os.ErrProcessDone {</span></span>
+<span id="L408"><span class="lineNum">     408</span> <span class="tlaUNC">           0 :                                                                 log.WithError(err).Error(&quot;failed to kill wireshark process&quot;)</span></span>
+<span id="L409"><span class="lineNum">     409</span> <span class="tlaUNC">           0 :                                                         } else {</span></span>
+<span id="L410"><span class="lineNum">     410</span> <span class="tlaUNC">           0 :                                                                 log.Debug(&quot;wireshark process killed&quot;)</span></span>
+<span id="L411"><span class="lineNum">     411</span> <span class="tlaUNC">           0 :                                                         }</span></span>
+<span id="L412"><span class="lineNum">     412</span>              :                                                 }</span>
+<span id="L413"><span class="lineNum">     413</span>              :                                         }</span>
+<span id="L414"><span class="lineNum">     414</span>              : </span>
+<span id="L415"><span class="lineNum">     415</span> <span class="tlaUNC">           0 :                                         close(signals)</span></span>
+<span id="L416"><span class="lineNum">     416</span>              :                                 }</span>
+<span id="L417"><span class="lineNum">     417</span> <span class="tlaUNC">           0 :                         case &lt;-exit:</span></span>
+<span id="L418"><span class="lineNum">     418</span> <span class="tlaUNC">           0 :                                 return</span></span>
+<span id="L419"><span class="lineNum">     419</span>              :                         }</span>
+<span id="L420"><span class="lineNum">     420</span>              : </span>
+<span id="L421"><span class="lineNum">     421</span>              :                 }</span>
+<span id="L422"><span class="lineNum">     422</span>              :         }()</span>
+<span id="L423"><span class="lineNum">     423</span> <span class="tlaUNC">           0 :         return exit</span></span>
+<span id="L424"><span class="lineNum">     424</span>              : }</span>
+<span id="L425"><span class="lineNum">     425</span>              : </span>
+<span id="L426"><span class="lineNum">     426</span> <span class="tlaUNC">           0 : func (o *Ksniff) Run() error {</span></span>
+<span id="L427"><span class="lineNum">     427</span> <span class="tlaUNC">           0 :         log.Infof(&quot;sniffing on pod: '%s' [namespace: '%s', container: '%s', filter: '%s', interface: '%s']&quot;,</span></span>
+<span id="L428"><span class="lineNum">     428</span> <span class="tlaUNC">           0 :                 o.settings.UserSpecifiedPodName, o.resultingContext.Namespace, o.settings.UserSpecifiedContainer, o.settings.UserSpecifiedFilter, o.settings.UserSpecifiedInterface)</span></span>
+<span id="L429"><span class="lineNum">     429</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L430"><span class="lineNum">     430</span> <span class="tlaUNC">           0 :         err := o.snifferService.Setup()</span></span>
+<span id="L431"><span class="lineNum">     431</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
+<span id="L432"><span class="lineNum">     432</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L433"><span class="lineNum">     433</span> <span class="tlaUNC">           0 :         }</span></span>
+<span id="L434"><span class="lineNum">     434</span>              : </span>
+<span id="L435"><span class="lineNum">     435</span>              :         // Ensure sniffer is clean on interrupt</span>
+<span id="L436"><span class="lineNum">     436</span> <span class="tlaUNC">           0 :         closeHandler := o.setupSignalHandler()</span></span>
+<span id="L437"><span class="lineNum">     437</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L438"><span class="lineNum">     438</span> <span class="tlaUNC">           0 :         // Ensure sniffer is clean on complete</span></span>
+<span id="L439"><span class="lineNum">     439</span> <span class="tlaUNC">           0 :         defer func() {</span></span>
+<span id="L440"><span class="lineNum">     440</span> <span class="tlaUNC">           0 :                 closeHandler &lt;- true</span></span>
+<span id="L441"><span class="lineNum">     441</span> <span class="tlaUNC">           0 :         }()</span></span>
+<span id="L442"><span class="lineNum">     442</span>              : </span>
+<span id="L443"><span class="lineNum">     443</span> <span class="tlaUNC">           0 :         if o.settings.UserSpecifiedOutputFile != &quot;&quot; {</span></span>
+<span id="L444"><span class="lineNum">     444</span> <span class="tlaUNC">           0 :                 log.Infof(&quot;output file option specified, storing output in: '%s'&quot;, o.settings.UserSpecifiedOutputFile)</span></span>
+<span id="L445"><span class="lineNum">     445</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L446"><span class="lineNum">     446</span> <span class="tlaUNC">           0 :                 var err error</span></span>
+<span id="L447"><span class="lineNum">     447</span> <span class="tlaUNC">           0 :                 var fileWriter io.Writer</span></span>
+<span id="L448"><span class="lineNum">     448</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L449"><span class="lineNum">     449</span> <span class="tlaUNC">           0 :                 if o.settings.UserSpecifiedOutputFile == &quot;-&quot; {</span></span>
+<span id="L450"><span class="lineNum">     450</span> <span class="tlaUNC">           0 :                         fileWriter = os.Stdout</span></span>
+<span id="L451"><span class="lineNum">     451</span> <span class="tlaUNC">           0 :                 } else {</span></span>
+<span id="L452"><span class="lineNum">     452</span> <span class="tlaUNC">           0 :                         fileWriter, err = os.Create(o.settings.UserSpecifiedOutputFile)</span></span>
+<span id="L453"><span class="lineNum">     453</span> <span class="tlaUNC">           0 :                         if err != nil {</span></span>
+<span id="L454"><span class="lineNum">     454</span> <span class="tlaUNC">           0 :                                 return err</span></span>
+<span id="L455"><span class="lineNum">     455</span> <span class="tlaUNC">           0 :                         }</span></span>
+<span id="L456"><span class="lineNum">     456</span>              :                 }</span>
+<span id="L457"><span class="lineNum">     457</span>              : </span>
+<span id="L458"><span class="lineNum">     458</span> <span class="tlaUNC">           0 :                 err = o.snifferService.Start(fileWriter)</span></span>
+<span id="L459"><span class="lineNum">     459</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
+<span id="L460"><span class="lineNum">     460</span> <span class="tlaUNC">           0 :                         return err</span></span>
+<span id="L461"><span class="lineNum">     461</span> <span class="tlaUNC">           0 :                 }</span></span>
+<span id="L462"><span class="lineNum">     462</span>              : </span>
+<span id="L463"><span class="lineNum">     463</span> <span class="tlaUNC">           0 :         } else {</span></span>
+<span id="L464"><span class="lineNum">     464</span> <span class="tlaUNC">           0 :                 log.Info(&quot;spawning wireshark!&quot;)</span></span>
+<span id="L465"><span class="lineNum">     465</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L466"><span class="lineNum">     466</span> <span class="tlaUNC">           0 :                 title := fmt.Sprintf(&quot;gui.window_title:%s/%s/%s&quot;, o.resultingContext.Namespace, o.settings.UserSpecifiedPodName, o.settings.UserSpecifiedContainer)</span></span>
+<span id="L467"><span class="lineNum">     467</span> <span class="tlaUNC">           0 :                 o.wireshark = exec.Command(&quot;wireshark&quot;, &quot;-k&quot;, &quot;-i&quot;, &quot;-&quot;, &quot;-o&quot;, title)</span></span>
+<span id="L468"><span class="lineNum">     468</span> <span class="tlaUNC">           0 : </span></span>
+<span id="L469"><span class="lineNum">     469</span> <span class="tlaUNC">           0 :                 stdinWriter, err := o.wireshark.StdinPipe()</span></span>
+<span id="L470"><span class="lineNum">     470</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
+<span id="L471"><span class="lineNum">     471</span> <span class="tlaUNC">           0 :                         return err</span></span>
+<span id="L472"><span class="lineNum">     472</span> <span class="tlaUNC">           0 :                 }</span></span>
+<span id="L473"><span class="lineNum">     473</span>              : </span>
+<span id="L474"><span class="lineNum">     474</span> <span class="tlaUNC">           0 :                 go func() {</span></span>
+<span id="L475"><span class="lineNum">     475</span> <span class="tlaUNC">           0 :                         err := o.snifferService.Start(stdinWriter)</span></span>
+<span id="L476"><span class="lineNum">     476</span> <span class="tlaUNC">           0 :                         if err != nil {</span></span>
+<span id="L477"><span class="lineNum">     477</span> <span class="tlaUNC">           0 :                                 log.WithError(err).Errorf(&quot;failed to start remote sniffing, stopping wireshark&quot;)</span></span>
+<span id="L478"><span class="lineNum">     478</span> <span class="tlaUNC">           0 :                                 _ = o.wireshark.Process.Kill()</span></span>
+<span id="L479"><span class="lineNum">     479</span> <span class="tlaUNC">           0 :                         }</span></span>
+<span id="L480"><span class="lineNum">     480</span>              :                 }()</span>
+<span id="L481"><span class="lineNum">     481</span>              : </span>
+<span id="L482"><span class="lineNum">     482</span> <span class="tlaUNC">           0 :                 err = o.wireshark.Run()</span></span>
+<span id="L483"><span class="lineNum">     483</span> <span class="tlaUNC">           0 :                 return err</span></span>
+<span id="L484"><span class="lineNum">     484</span>              :         }</span>
+<span id="L485"><span class="lineNum">     485</span>              : </span>
+<span id="L486"><span class="lineNum">     486</span> <span class="tlaUNC">           0 :         return nil</span></span>
+<span id="L487"><span class="lineNum">     487</span>              : }</span>
+        </pre>
+              </td>
+            </tr>
+          </table>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html
new file mode 100644
index 0000000..0f934d0
--- /dev/null
+++ b/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html
@@ -0,0 +1,98 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/utils</title>
+  <link rel="stylesheet" type="text/css" href="../../../../../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../../../../../index.html" title="Click to go to top-level">top level</a> - /Users/mtl/Development/omnicate-ksniff/utils</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">36</td>
+            <td class="headerCovTableEntry">36</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><img src="../../../../../glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="../../../../../glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="utils.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/utils/utils.go">utils.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../../../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html
new file mode 100644
index 0000000..c59ac96
--- /dev/null
+++ b/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html
@@ -0,0 +1,128 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/utils/utils.go</title>
+  <link rel="stylesheet" type="text/css" href="../../../../../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../../../../../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils</a> - utils.go</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">36</td>
+            <td class="headerCovTableEntry">36</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <table cellpadding=0 cellspacing=0 border=0>
+            <tr>
+              <td><br></td>
+            </tr>
+            <tr>
+              <td>
+<pre class="sourceHeading">            Line data    Source code</pre>
+<pre class="source">
+<span id="L1"><span class="lineNum">       1</span>              : package utils</span>
+<span id="L2"><span class="lineNum">       2</span>              : </span>
+<span id="L3"><span class="lineNum">       3</span>              : import (</span>
+<span id="L4"><span class="lineNum">       4</span>              :         &quot;context&quot;</span>
+<span id="L5"><span class="lineNum">       5</span>              :         &quot;math/rand&quot;</span>
+<span id="L6"><span class="lineNum">       6</span>              :         &quot;time&quot;</span>
+<span id="L7"><span class="lineNum">       7</span>              : )</span>
+<span id="L8"><span class="lineNum">       8</span>              : </span>
+<span id="L9"><span class="lineNum">       9</span> <span class="tlaGNC">           4 : func RunWhileFalse(fn func() bool, timeout time.Duration, delay time.Duration) bool {</span></span>
+<span id="L10"><span class="lineNum">      10</span> <span class="tlaGNC">           4 :         var ctx context.Context</span></span>
+<span id="L11"><span class="lineNum">      11</span> <span class="tlaGNC">           4 :         var cancel context.CancelFunc</span></span>
+<span id="L12"><span class="lineNum">      12</span> <span class="tlaGNC">           4 :         if fn() {</span></span>
+<span id="L13"><span class="lineNum">      13</span> <span class="tlaGNC">           1 :                 return true</span></span>
+<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L15"><span class="lineNum">      15</span>              : </span>
+<span id="L16"><span class="lineNum">      16</span>              :         // Timeout 0 is infinite timeout</span>
+<span id="L17"><span class="lineNum">      17</span> <span class="tlaGNC">           3 :         if (timeout == 0) {</span></span>
+<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 :                 ctx, cancel = context.WithCancel(context.Background())</span></span>
+<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           2 :         } else {</span></span>
+<span id="L20"><span class="lineNum">      20</span> <span class="tlaGNC">           2 :                 ctx, cancel = context.WithTimeout(context.Background(), timeout)</span></span>
+<span id="L21"><span class="lineNum">      21</span> <span class="tlaGNC">           2 :         }</span></span>
+<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           3 :         delayTick := time.NewTicker(delay)</span></span>
+<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           3 : </span></span>
+<span id="L24"><span class="lineNum">      24</span> <span class="tlaGNC">           3 :         defer delayTick.Stop()</span></span>
+<span id="L25"><span class="lineNum">      25</span> <span class="tlaGNC">           3 :         defer cancel()</span></span>
+<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           3 : </span></span>
+<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">           8 :         for {</span></span>
+<span id="L28"><span class="lineNum">      28</span> <span class="tlaGNC">           8 :                 select {</span></span>
+<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">           1 :                 case &lt;-ctx.Done():</span></span>
+<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           1 :                         return false</span></span>
+<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           6 :                 case &lt;-delayTick.C:</span></span>
+<span id="L32"><span class="lineNum">      32</span> <span class="tlaGNC">           6 :                         if fn() {</span></span>
+<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           1 :                                 cancel()</span></span>
+<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           1 :                                 return true</span></span>
+<span id="L35"><span class="lineNum">      35</span> <span class="tlaGNC">           1 :                         }</span></span>
+<span id="L36"><span class="lineNum">      36</span>              :                 }</span>
+<span id="L37"><span class="lineNum">      37</span>              :         }</span>
+<span id="L38"><span class="lineNum">      38</span>              : }</span>
+<span id="L39"><span class="lineNum">      39</span>              : </span>
+<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           6 : func GenerateRandomString(length int) string {</span></span>
+<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           6 : </span></span>
+<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           6 :         rand.Seed(time.Now().UnixNano())</span></span>
+<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           6 : </span></span>
+<span id="L44"><span class="lineNum">      44</span> <span class="tlaGNC">           6 :         var letterRunes = []rune(&quot;abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ&quot;)</span></span>
+<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           6 : </span></span>
+<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           6 :         b := make([]rune, length)</span></span>
+<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">          48 :         for i := range b {</span></span>
+<span id="L48"><span class="lineNum">      48</span> <span class="tlaGNC">          48 :                 b[i] = letterRunes[rand.Intn(len(letterRunes))]</span></span>
+<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">          48 :         }</span></span>
+<span id="L50"><span class="lineNum">      50</span>              : </span>
+<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           6 :         return string(b)</span></span>
+<span id="L52"><span class="lineNum">      52</span>              : }</span>
+        </pre>
+              </td>
+            </tr>
+          </table>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/amber.png b/coverage_html/amber.png
new file mode 100644
index 0000000000000000000000000000000000000000..2cab170d8359081983a4e343848dfe06bc490f12
GIT binary patch
literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^G2tW}LqE04T&+
z;1OBOz`!j8!i<;h*8KqrvZOouIx;Y9?C1WI$O`1M1^9%x{(levWG<?@RR^TFJY5_^
cDsCkw0NG3oj8E0?f%GwWy85}Sb4q9e09Jz{aR2}S

literal 0
HcmV?d00001

diff --git a/coverage_html/cmd_line b/coverage_html/cmd_line
new file mode 100644
index 0000000..e442405
--- /dev/null
+++ b/coverage_html/cmd_line
@@ -0,0 +1 @@
+genhtml bazel-out/_coverage/_coverage_report.dat -o coverage_html --ignore-errors source
diff --git a/coverage_html/emerald.png b/coverage_html/emerald.png
new file mode 100644
index 0000000000000000000000000000000000000000..38ad4f4068b935643d2486f323005fb294a9bd7e
GIT binary patch
literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^Jb<Pkv=K1`2T&
zctjR6FmMZjFyp1Wb$@_@Ea{HEjtmSN`?>!lvI6;R0X`wF(yt=9xVZRt1vCRixIA4P
dLn>}1Cji+@42)0J?}79&c)I$ztaD0e0sy@GAL0N2

literal 0
HcmV?d00001

diff --git a/coverage_html/gcov.css b/coverage_html/gcov.css
new file mode 100644
index 0000000..1cacc83
--- /dev/null
+++ b/coverage_html/gcov.css
@@ -0,0 +1,1125 @@
+/* All views: initial background and text color */
+body
+{
+  color: #000000;
+  background-color: #ffffff;
+}
+
+/* All views: standard link format*/
+a:link
+{
+  color: #284fa8;
+  text-decoration: underline;
+}
+
+/* All views: standard link - visited format */
+a:visited
+{
+  color: #00cb40;
+  text-decoration: underline;
+}
+
+/* All views: standard link - activated format */
+a:active
+{
+  color: #ff0040;
+  text-decoration: underline;
+}
+
+/* All views: main title format */
+td.title
+{
+  text-align: center;
+  padding-bottom: 10px;
+  font-family: sans-serif;
+  font-size: 20pt;
+  font-style: italic;
+  font-weight: bold;
+}
+/* table footnote */
+td.footnote
+{
+  text-align: left;
+  padding-left: 100px;
+  padding-right: 10px;
+  background-color: #dae7fe; /* light blue table background color */
+  /* dark blue table header color
+  background-color: #6688d4; */
+  white-space: nowrap;
+  font-family: sans-serif;
+  font-style: italic;
+  font-size:70%;
+}
+/* "Line coverage date bins" leader */
+td.subTableHeader
+{
+  text-align: center;
+  padding-bottom: 6px;
+  font-family: sans-serif;
+  font-weight: bold;
+  vertical-align: center;
+}
+
+/* All views: header item format */
+td.headerItem
+{
+  text-align: right;
+  padding-right: 6px;
+  font-family: sans-serif;
+  font-weight: bold;
+  vertical-align: top;
+  white-space: nowrap;
+}
+
+/* All views: header item value format */
+td.headerValue
+{
+  text-align: left;
+  color: #284fa8;
+  font-family: sans-serif;
+  font-weight: bold;
+  white-space: nowrap;
+}
+
+/* All views: header item coverage table heading */
+td.headerCovTableHead
+{
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+}
+
+/* All views: header item coverage table entry */
+td.headerCovTableEntry
+{
+  text-align: right;
+  color: #284fa8;
+  font-family: sans-serif;
+  font-weight: bold;
+  white-space: nowrap;
+  padding-left: 12px;
+  padding-right: 4px;
+  background-color: #dae7fe;
+}
+
+/* All views: header item coverage table entry for high coverage rate */
+td.headerCovTableEntryHi
+{
+  text-align: right;
+  color: #000000;
+  font-family: sans-serif;
+  font-weight: bold;
+  white-space: nowrap;
+  padding-left: 12px;
+  padding-right: 4px;
+  background-color: #a7fc9d;
+}
+
+/* All views: header item coverage table entry for medium coverage rate */
+td.headerCovTableEntryMed
+{
+  text-align: right;
+  color: #000000;
+  font-family: sans-serif;
+  font-weight: bold;
+  white-space: nowrap;
+  padding-left: 12px;
+  padding-right: 4px;
+  background-color: #ffea20;
+}
+
+/* All views: header item coverage table entry for ow coverage rate */
+td.headerCovTableEntryLo
+{
+  text-align: right;
+  color: #000000;
+  font-family: sans-serif;
+  font-weight: bold;
+  white-space: nowrap;
+  padding-left: 12px;
+  padding-right: 4px;
+  background-color: #ff0000;
+}
+
+/* All views: header legend value for legend entry */
+td.headerValueLeg
+{
+  text-align: left;
+  color: #000000;
+  font-family: sans-serif;
+  font-size: 80%;
+  white-space: nowrap;
+  padding-top: 4px;
+}
+
+/* All views: color of horizontal ruler */
+td.ruler
+{
+  background-color: #6688d4;
+}
+
+/* All views: version string format */
+td.versionInfo
+{
+  text-align: center;
+  padding-top: 2px;
+  font-family: sans-serif;
+  font-style: italic;
+}
+
+/* Directory view/File view (all)/Test case descriptions:
+   table headline format */
+td.tableHead
+{
+  text-align: center;
+  color: #ffffff;
+  background-color: #6688d4;
+  font-family: sans-serif;
+  font-size: 120%;
+  font-weight: bold;
+  white-space: nowrap;
+  padding-left: 4px;
+  padding-right: 4px;
+}
+
+span.tableHeadSort
+{
+  padding-right: 4px;
+}
+
+/* Directory view/File view (all): filename entry format */
+td.coverFile
+{
+  text-align: left;
+  padding-left: 10px;
+  padding-right: 20px;
+  color: #284fa8;
+  background-color: #dae7fe;
+  font-family: monospace;
+}
+
+/* Directory view/File view (all): directory name entry format */
+td.coverDirectory
+{
+  text-align: left;
+  padding-left: 10px;
+  padding-right: 20px;
+  color: #284fa8;
+  background-color: #b8d0ff;
+  font-family: monospace;
+}
+
+/* Directory view/File view (all): filename entry format */
+td.overallOwner
+{
+  text-align: center;
+  font-weight: bold;
+  font-family: sans-serif;
+  background-color: #dae7fe;
+  padding-right: 10px;
+  padding-left: 10px;
+}
+
+/* Directory view/File view (all): filename entry format */
+td.ownerName
+{
+  text-align: right;
+  font-style: italic;
+  font-family: sans-serif;
+  background-color: #E5DBDB;
+  padding-right: 10px;
+  padding-left: 20px;
+}
+
+/* Directory view/File view (all): bar-graph entry format*/
+td.coverBar
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #dae7fe;
+}
+
+/* Directory view/File view (all): bar-graph entry format*/
+td.owner_coverBar
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #E5DBDB;
+}
+
+/* Directory view/File view (all): bar-graph outline color */
+td.coverBarOutline
+{
+  background-color: #000000;
+}
+
+/* Directory view/File view (all): percentage entry for files with
+   high coverage rate */
+td.coverPerHi
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #a7fc9d;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+/* 'owner' entry:  slightly lighter color than 'coverPerHi' */
+td.owner_coverPerHi
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #82E0AA;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+/* Directory view/File view (all): line count entry */
+td.coverNumDflt
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #dae7fe;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+/* td background color and font for the 'owner' section of the table */
+td.ownerTla
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #E5DBDB;
+  white-space: nowrap;
+  font-family: sans-serif;
+  font-style: italic;
+}
+
+/* Directory view/File view (all): line count entry for files with
+   high coverage rate */
+td.coverNumHi
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #a7fc9d;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+td.owner_coverNumHi
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #82E0AA;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+/* Directory view/File view (all): percentage entry for files with
+   medium coverage rate */
+td.coverPerMed
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #ffea20;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+td.owner_coverPerMed
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #F9E79F;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+/* Directory view/File view (all): line count entry for files with
+   medium coverage rate */
+td.coverNumMed
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #ffea20;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+td.owner_coverNumMed
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #F9E79F;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+/* Directory view/File view (all): percentage entry for files with
+   low coverage rate */
+td.coverPerLo
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #ff0000;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+td.owner_coverPerLo
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #EC7063;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+/* Directory view/File view (all): line count entry for files with
+   low coverage rate */
+td.coverNumLo
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #ff0000;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+td.owner_coverNumLo
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #EC7063;
+  white-space: nowrap;
+  font-family: sans-serif;
+}
+
+/* File view (all): "show/hide details" link format */
+a.detail:link
+{
+  color: #b8d0ff;
+  font-size:80%;
+}
+
+/* File view (all): "show/hide details" link - visited format */
+a.detail:visited
+{
+  color: #b8d0ff;
+  font-size:80%;
+}
+
+/* File view (all): "show/hide details" link - activated format */
+a.detail:active
+{
+  color: #ffffff;
+  font-size:80%;
+}
+
+/* File view (detail): test name entry */
+td.testName
+{
+  text-align: right;
+  padding-right: 10px;
+  background-color: #dae7fe;
+  font-family: sans-serif;
+}
+
+/* File view (detail): test percentage entry */
+td.testPer
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #dae7fe;
+  font-family: sans-serif;
+}
+
+/* File view (detail): test lines count entry */
+td.testNum
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #dae7fe;
+  font-family: sans-serif;
+}
+
+/* Test case descriptions: test name format*/
+dt
+{
+  font-family: sans-serif;
+  font-weight: bold;
+}
+
+/* Test case descriptions: description table body */
+td.testDescription
+{
+  padding-top: 10px;
+  padding-left: 30px;
+  padding-bottom: 10px;
+  padding-right: 30px;
+  background-color: #dae7fe;
+}
+
+/* Source code view: function entry */
+td.coverFn
+{
+  text-align: left;
+  padding-left: 10px;
+  padding-right: 20px;
+  color: #284fa8;
+  background-color: #dae7fe;
+  font-family: monospace;
+}
+
+/* Source code view: function entry zero count*/
+td.coverFnLo
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #ff0000;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+/* Source code view: function entry nonzero count*/
+td.coverFnHi
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #dae7fe;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+td.coverFnAlias
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 20px;
+  color: #284fa8;
+  /* make this a slightly different color than the leader - otherwise,
+     otherwise the alias is hard to distinguish in the table */
+  background-color: #E5DBDB; /* very light pale grey/blue */
+  font-family: monospace;
+}
+
+/* Source code view: function entry zero count*/
+td.coverFnAliasLo
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #EC7063; /* lighter red */
+  font-family: sans-serif;
+}
+
+/* Source code view: function entry nonzero count*/
+td.coverFnAliasHi
+{
+  text-align: right;
+  padding-left: 10px;
+  padding-right: 10px;
+  background-color: #dae7fe;
+  font-weight: bold;
+  font-family: sans-serif;
+}
+
+/* Source code view: source code format */
+pre.source
+{
+  font-family: monospace;
+  white-space: pre;
+  margin-top: 2px;
+}
+
+/* elided/removed code */
+span.elidedSource
+{
+  font-family: sans-serif;
+  /*font-size: 8pt; */
+  font-style: italic;
+  background-color: lightgrey;
+}
+
+/* Source code view: line number format */
+span.lineNum
+{
+  background-color: #efe383;
+}
+
+/* Source code view: line number format when there are deleted
+   lines in the corresponding location */
+span.lineNumWithDelete
+{
+  foreground-color: #efe383;
+  background-color: lightgrey;
+}
+
+/* Source code view: format for Cov legend */
+span.coverLegendCov
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  padding-bottom: 2px;
+  background-color: #cad7fe;
+}
+
+/* Source code view: format for NoCov legend */
+span.coverLegendNoCov
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  padding-bottom: 2px;
+  background-color: #ff6230;
+}
+
+/* Source code view: format for the source code heading line */
+pre.sourceHeading
+{
+  white-space: pre;
+  font-family: monospace;
+  font-weight: bold;
+  margin: 0px;
+}
+
+/* All views: header legend value for low rate */
+td.headerValueLegL
+{
+  font-family: sans-serif;
+  text-align: center;
+  white-space: nowrap;
+  padding-left: 4px;
+  padding-right: 2px;
+  background-color: #ff0000;
+  font-size: 80%;
+}
+
+/* All views: header legend value for med rate */
+td.headerValueLegM
+{
+  font-family: sans-serif;
+  text-align: center;
+  white-space: nowrap;
+  padding-left: 2px;
+  padding-right: 2px;
+  background-color: #ffea20;
+  font-size: 80%;
+}
+
+/* All views: header legend value for hi rate */
+td.headerValueLegH
+{
+  font-family: sans-serif;
+  text-align: center;
+  white-space: nowrap;
+  padding-left: 2px;
+  padding-right: 4px;
+  background-color: #a7fc9d;
+  font-size: 80%;
+}
+
+/* All views except source code view: legend format for low coverage */
+span.coverLegendCovLo
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  padding-top: 2px;
+  background-color: #ff0000;
+}
+
+/* All views except source code view: legend format for med coverage */
+span.coverLegendCovMed
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  padding-top: 2px;
+  background-color: #ffea20;
+}
+
+/* All views except source code view: legend format for hi coverage */
+span.coverLegendCovHi
+{
+  padding-left: 10px;
+  padding-right: 10px;
+  padding-top: 2px;
+  background-color: #a7fc9d;
+}
+
+a.branchTla:link
+{
+  color: #000000;
+}
+
+a.branchTla:visited
+{
+  color: #000000;
+}
+
+a.mcdcTla:link
+{
+  color: #000000;
+}
+
+a.mcdcTla:visited
+{
+  color: #000000;
+}
+
+/* Source code view/table entry background: format for lines classified as "Uncovered New Code (+ => 0):
+Newly added code is not tested" */
+td.tlaUNC
+{
+  text-align: right;
+  background-color: #FF6230;
+}
+td.tlaBgUNC {
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Uncovered New Code (+ => 0):
+Newly added code is not tested" */
+span.tlaUNC
+{
+  text-align: left;
+  background-color: #FF6230;
+}
+span.tlaBgUNC {
+  background-color: #FF6230;
+}
+a.tlaBgUNC {
+  background-color: #FF6230;
+  color: #000000;
+}
+
+td.headerCovTableHeadUNC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Lost Baseline Coverage (1 => 0):
+Unchanged code is no longer tested" */
+td.tlaLBC
+{
+  text-align: right;
+  background-color: #FF6230;
+}
+td.tlaBgLBC {
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Lost Baseline Coverage (1 => 0):
+Unchanged code is no longer tested" */
+span.tlaLBC
+{
+  text-align: left;
+  background-color: #FF6230;
+}
+span.tlaBgLBC {
+  background-color: #FF6230;
+}
+a.tlaBgLBC {
+  background-color: #FF6230;
+  color: #000000;
+}
+
+td.headerCovTableHeadLBC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Uncovered Included Code (# => 0):
+Previously unused code is untested" */
+td.tlaUIC
+{
+  text-align: right;
+  background-color: #FF6230;
+}
+td.tlaBgUIC {
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Uncovered Included Code (# => 0):
+Previously unused code is untested" */
+span.tlaUIC
+{
+  text-align: left;
+  background-color: #FF6230;
+}
+span.tlaBgUIC {
+  background-color: #FF6230;
+}
+a.tlaBgUIC {
+  background-color: #FF6230;
+  color: #000000;
+}
+
+td.headerCovTableHeadUIC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Uncovered Baseline Code (0 => 0):
+Unchanged code was untested before, is untested now" */
+td.tlaUBC
+{
+  text-align: right;
+  background-color: #FF6230;
+}
+td.tlaBgUBC {
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Uncovered Baseline Code (0 => 0):
+Unchanged code was untested before, is untested now" */
+span.tlaUBC
+{
+  text-align: left;
+  background-color: #FF6230;
+}
+span.tlaBgUBC {
+  background-color: #FF6230;
+}
+a.tlaBgUBC {
+  background-color: #FF6230;
+  color: #000000;
+}
+
+td.headerCovTableHeadUBC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FF6230;
+}
+
+/* Source code view/table entry background: format for lines classified as "Gained Baseline Coverage (0 => 1):
+Unchanged code is tested now" */
+td.tlaGBC
+{
+  text-align: right;
+  background-color: #CAD7FE;
+}
+td.tlaBgGBC {
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Gained Baseline Coverage (0 => 1):
+Unchanged code is tested now" */
+span.tlaGBC
+{
+  text-align: left;
+  background-color: #CAD7FE;
+}
+span.tlaBgGBC {
+  background-color: #CAD7FE;
+}
+a.tlaBgGBC {
+  background-color: #CAD7FE;
+  color: #000000;
+}
+
+td.headerCovTableHeadGBC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Gained Included Coverage (# => 1):
+Previously unused code is tested now" */
+td.tlaGIC
+{
+  text-align: right;
+  background-color: #CAD7FE;
+}
+td.tlaBgGIC {
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Gained Included Coverage (# => 1):
+Previously unused code is tested now" */
+span.tlaGIC
+{
+  text-align: left;
+  background-color: #CAD7FE;
+}
+span.tlaBgGIC {
+  background-color: #CAD7FE;
+}
+a.tlaBgGIC {
+  background-color: #CAD7FE;
+  color: #000000;
+}
+
+td.headerCovTableHeadGIC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Gained New Coverage (+ => 1):
+Newly added code is tested" */
+td.tlaGNC
+{
+  text-align: right;
+  background-color: #CAD7FE;
+}
+td.tlaBgGNC {
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Gained New Coverage (+ => 1):
+Newly added code is tested" */
+span.tlaGNC
+{
+  text-align: left;
+  background-color: #CAD7FE;
+}
+span.tlaBgGNC {
+  background-color: #CAD7FE;
+}
+a.tlaBgGNC {
+  background-color: #CAD7FE;
+  color: #000000;
+}
+
+td.headerCovTableHeadGNC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Covered Baseline Code (1 => 1):
+Unchanged code was tested before and is still tested" */
+td.tlaCBC
+{
+  text-align: right;
+  background-color: #CAD7FE;
+}
+td.tlaBgCBC {
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Covered Baseline Code (1 => 1):
+Unchanged code was tested before and is still tested" */
+span.tlaCBC
+{
+  text-align: left;
+  background-color: #CAD7FE;
+}
+span.tlaBgCBC {
+  background-color: #CAD7FE;
+}
+a.tlaBgCBC {
+  background-color: #CAD7FE;
+  color: #000000;
+}
+
+td.headerCovTableHeadCBC {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #CAD7FE;
+}
+
+/* Source code view/table entry background: format for lines classified as "Excluded Uncovered Baseline (0 => #):
+Previously untested code is unused now" */
+td.tlaEUB
+{
+  text-align: right;
+  background-color: #FFFFFF;
+}
+td.tlaBgEUB {
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Excluded Uncovered Baseline (0 => #):
+Previously untested code is unused now" */
+span.tlaEUB
+{
+  text-align: left;
+  background-color: #FFFFFF;
+}
+span.tlaBgEUB {
+  background-color: #FFFFFF;
+}
+a.tlaBgEUB {
+  background-color: #FFFFFF;
+  color: #000000;
+}
+
+td.headerCovTableHeadEUB {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Excluded Covered Baseline (1 => #):
+Previously tested code is unused now" */
+td.tlaECB
+{
+  text-align: right;
+  background-color: #FFFFFF;
+}
+td.tlaBgECB {
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Excluded Covered Baseline (1 => #):
+Previously tested code is unused now" */
+span.tlaECB
+{
+  text-align: left;
+  background-color: #FFFFFF;
+}
+span.tlaBgECB {
+  background-color: #FFFFFF;
+}
+a.tlaBgECB {
+  background-color: #FFFFFF;
+  color: #000000;
+}
+
+td.headerCovTableHeadECB {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Deleted Uncovered Baseline (0 => -):
+Previously untested code has been deleted" */
+td.tlaDUB
+{
+  text-align: right;
+  background-color: #FFFFFF;
+}
+td.tlaBgDUB {
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Deleted Uncovered Baseline (0 => -):
+Previously untested code has been deleted" */
+span.tlaDUB
+{
+  text-align: left;
+  background-color: #FFFFFF;
+}
+span.tlaBgDUB {
+  background-color: #FFFFFF;
+}
+a.tlaBgDUB {
+  background-color: #FFFFFF;
+  color: #000000;
+}
+
+td.headerCovTableHeadDUB {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Deleted Covered Baseline (1 => -):
+Previously tested code has been deleted" */
+td.tlaDCB
+{
+  text-align: right;
+  background-color: #FFFFFF;
+}
+td.tlaBgDCB {
+  background-color: #FFFFFF;
+}
+
+/* Source code view/table entry background: format for lines classified as "Deleted Covered Baseline (1 => -):
+Previously tested code has been deleted" */
+span.tlaDCB
+{
+  text-align: left;
+  background-color: #FFFFFF;
+}
+span.tlaBgDCB {
+  background-color: #FFFFFF;
+}
+a.tlaBgDCB {
+  background-color: #FFFFFF;
+  color: #000000;
+}
+
+td.headerCovTableHeadDCB {
+  text-align: center;
+  padding-right: 6px;
+  padding-left: 6px;
+  padding-bottom: 0px;
+  font-family: sans-serif;
+  white-space: nowrap;
+  background-color: #FFFFFF;
+}
+
+/* Source code view: format for date/owner bin that is not hit */
+span.missBins
+{
+  background-color: #ff0000 /* red */
+}
diff --git a/coverage_html/glass.png b/coverage_html/glass.png
new file mode 100644
index 0000000000000000000000000000000000000000..e1abc00680a3093c49fdb775ae6bdb6764c95af2
GIT binary patch
literal 167
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)gaEa{HEjtmSN`?>!lvI6;R0X`wF
z|Ns97GD8ntt^-nxB|(0{3=Yq3q=7g|-tI089jvk*Kn`btM`SSr1Gf+eGhVt|_XjA*
zUgGKN%6^Gmn4d%Ph(nkFP>9RZ#WAE}PI3Z}&BVayv3^M*kj3EX>gTe~DWM4f=_Dpv

literal 0
HcmV?d00001

diff --git a/coverage_html/index-sort-f.html b/coverage_html/index-sort-f.html
new file mode 100644
index 0000000..050a98e
--- /dev/null
+++ b/coverage_html/index-sort-f.html
@@ -0,0 +1,116 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat</title>
+  <link rel="stylesheet" type="text/css" href="gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue">top level</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryLo">69.3&nbsp;%</td>
+            <td class="headerCovTableEntry">541</td>
+            <td class="headerCovTableEntry">375</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>Directory <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="ruby.png" width=52 height=10 alt="52.4%"><img src="snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
+              </td>
+              <td class="coverPerLo">52.4&nbsp;%</td>
+              <td class="coverNumDflt">349</td>
+              <td class="coverNumDflt">183</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/utils/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="runtime/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime">runtime/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">156</td>
+              <td class="coverNumDflt">156</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/index-sort-l.html b/coverage_html/index-sort-l.html
new file mode 100644
index 0000000..3924dac
--- /dev/null
+++ b/coverage_html/index-sort-l.html
@@ -0,0 +1,116 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat</title>
+  <link rel="stylesheet" type="text/css" href="gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue">top level</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryLo">69.3&nbsp;%</td>
+            <td class="headerCovTableEntry">541</td>
+            <td class="headerCovTableEntry">375</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>Directory <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="ruby.png" width=52 height=10 alt="52.4%"><img src="snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
+              </td>
+              <td class="coverPerLo">52.4&nbsp;%</td>
+              <td class="coverNumDflt">349</td>
+              <td class="coverNumDflt">183</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/utils/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="runtime/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime">runtime/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">156</td>
+              <td class="coverNumDflt">156</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/index.html b/coverage_html/index.html
new file mode 100644
index 0000000..6aeb064
--- /dev/null
+++ b/coverage_html/index.html
@@ -0,0 +1,116 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat</title>
+  <link rel="stylesheet" type="text/css" href="gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue">top level</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryLo">69.3&nbsp;%</td>
+            <td class="headerCovTableEntry">541</td>
+            <td class="headerCovTableEntry">375</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>Directory <span  title="Click to sort table by file name" class="tableHeadSort"><img src="glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="ruby.png" width=52 height=10 alt="52.4%"><img src="snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
+              </td>
+              <td class="coverPerLo">52.4&nbsp;%</td>
+              <td class="coverNumDflt">349</td>
+              <td class="coverNumDflt">183</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/utils/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+            <tr>
+              <td class="coverDirectory"><a href="runtime/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime">runtime/</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">156</td>
+              <td class="coverNumDflt">156</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/ruby.png b/coverage_html/ruby.png
new file mode 100644
index 0000000000000000000000000000000000000000..991b6d4ec9e78be165e3ef757eed1aada287364d
GIT binary patch
literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^FceV#7`HfI^%F
z9+AZi4BSE>%y{W;-5;PJOS+@4BLl<6e(pbstUx|nfKQ0)e^Y%R^MdiLxj>4`)5S5Q
b;#P73kj=!v_*DHKNFRfztDnm{r-UW|iOwIS

literal 0
HcmV?d00001

diff --git a/coverage_html/runtime/containerd.go.gcov.html b/coverage_html/runtime/containerd.go.gcov.html
new file mode 100644
index 0000000..c48ad7c
--- /dev/null
+++ b/coverage_html/runtime/containerd.go.gcov.html
@@ -0,0 +1,145 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime/containerd.go</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - containerd.go</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">47</td>
+            <td class="headerCovTableEntry">47</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <table cellpadding=0 cellspacing=0 border=0>
+            <tr>
+              <td><br></td>
+            </tr>
+            <tr>
+              <td>
+<pre class="sourceHeading">            Line data    Source code</pre>
+<pre class="source">
+<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
+<span id="L2"><span class="lineNum">       2</span>              : </span>
+<span id="L3"><span class="lineNum">       3</span>              : import (</span>
+<span id="L4"><span class="lineNum">       4</span>              :         &quot;fmt&quot;</span>
+<span id="L5"><span class="lineNum">       5</span>              :         &quot;ksniff/utils&quot;</span>
+<span id="L6"><span class="lineNum">       6</span>              : )</span>
+<span id="L7"><span class="lineNum">       7</span>              : </span>
+<span id="L8"><span class="lineNum">       8</span>              : type ContainerdBridge struct {</span>
+<span id="L9"><span class="lineNum">       9</span>              :         tcpdumpContainerName string</span>
+<span id="L10"><span class="lineNum">      10</span>              :         socketPath string</span>
+<span id="L11"><span class="lineNum">      11</span>              : }</span>
+<span id="L12"><span class="lineNum">      12</span>              : </span>
+<span id="L13"><span class="lineNum">      13</span> <span class="tlaGNC">          10 : func NewContainerdBridge() *ContainerdBridge {</span></span>
+<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">          10 :         return &amp;ContainerdBridge{}</span></span>
+<span id="L15"><span class="lineNum">      15</span> <span class="tlaGNC">          10 : }</span></span>
+<span id="L16"><span class="lineNum">      16</span>              : </span>
+<span id="L17"><span class="lineNum">      17</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) NeedsPid() bool {</span></span>
+<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 :         return false</span></span>
+<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L20"><span class="lineNum">      20</span>              : </span>
+<span id="L21"><span class="lineNum">      21</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) BuildInspectCommand(string) []string {</span></span>
+<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           1 :         panic(&quot;Containerd doesn't need this implemented&quot;)</span></span>
+<span id="L23"><span class="lineNum">      23</span>              : }</span>
+<span id="L24"><span class="lineNum">      24</span>              : </span>
+<span id="L25"><span class="lineNum">      25</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) ExtractPid(inspection string) (*string, error) {</span></span>
+<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           1 :         panic(&quot;Containerd doesn't need this implemented&quot;)</span></span>
+<span id="L27"><span class="lineNum">      27</span>              : }</span>
+<span id="L28"><span class="lineNum">      28</span>              : </span>
+<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) GetDefaultSocketPath() string {</span></span>
+<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           1 :         return &quot;/run/containerd/containerd.sock&quot;</span></span>
+<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L32"><span class="lineNum">      32</span>              : </span>
+<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           2 : func (d *ContainerdBridge) BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string {</span></span>
+<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           2 :         d.tcpdumpContainerName = &quot;ksniff-container-&quot; + utils.GenerateRandomString(8)</span></span>
+<span id="L35"><span class="lineNum">      35</span> <span class="tlaGNC">           2 :         d.socketPath = socketPath</span></span>
+<span id="L36"><span class="lineNum">      36</span> <span class="tlaGNC">           2 :         tcpdumpCommand := fmt.Sprintf(&quot;tcpdump -i %s -U -w - %s&quot;, netInterface, filter)</span></span>
+<span id="L37"><span class="lineNum">      37</span> <span class="tlaGNC">           2 :         shellScript := fmt.Sprintf(`</span></span>
+<span id="L38"><span class="lineNum">      38</span> <span class="tlaGNC">           2 :     set -ex</span></span>
+<span id="L39"><span class="lineNum">      39</span> <span class="tlaGNC">           2 :     export CONTAINERD_SOCKET=&quot;%s&quot;</span></span>
+<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           2 :     export CONTAINERD_NAMESPACE=&quot;k8s.io&quot;</span></span>
+<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           2 :     export CONTAINER_RUNTIME_ENDPOINT=&quot;unix:///host${CONTAINERD_SOCKET}&quot;</span></span>
+<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           2 :     export IMAGE_SERVICE_ENDPOINT=${CONTAINER_RUNTIME_ENDPOINT}</span></span>
+<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           2 :     crictl pull %s &gt;/dev/null</span></span>
+<span id="L44"><span class="lineNum">      44</span> <span class="tlaGNC">           2 :     netns=$(crictl inspect %s | jq '.info.runtimeSpec.linux.namespaces[] | select(.type == &quot;network&quot;) | .path' | tr -d '&quot;')</span></span>
+<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           2 :     exec chroot /host ctr -a ${CONTAINERD_SOCKET} run --rm --with-ns &quot;network:${netns}&quot; %s %s %s </span></span>
+<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           2 :     `, d.socketPath, tcpdumpImage, *containerId, tcpdumpImage, d.tcpdumpContainerName, tcpdumpCommand)</span></span>
+<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">           2 :         command := []string{&quot;/bin/sh&quot;, &quot;-c&quot;, shellScript}</span></span>
+<span id="L48"><span class="lineNum">      48</span> <span class="tlaGNC">           2 :         return command</span></span>
+<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">           2 : }</span></span>
+<span id="L50"><span class="lineNum">      50</span>              : </span>
+<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           1 : func (d *ContainerdBridge) BuildCleanupCommand() []string {</span></span>
+<span id="L52"><span class="lineNum">      52</span> <span class="tlaGNC">           1 :         shellScript := fmt.Sprintf(`</span></span>
+<span id="L53"><span class="lineNum">      53</span> <span class="tlaGNC">           1 :     set -ex</span></span>
+<span id="L54"><span class="lineNum">      54</span> <span class="tlaGNC">           1 :     export CONTAINERD_SOCKET=&quot;%s&quot;</span></span>
+<span id="L55"><span class="lineNum">      55</span> <span class="tlaGNC">           1 :     export CONTAINERD_NAMESPACE=&quot;k8s.io&quot;</span></span>
+<span id="L56"><span class="lineNum">      56</span> <span class="tlaGNC">           1 :     export CONTAINER_ID=&quot;%s&quot;</span></span>
+<span id="L57"><span class="lineNum">      57</span> <span class="tlaGNC">           1 :     chroot /host ctr -a ${CONTAINERD_SOCKET} task kill -s SIGKILL ${CONTAINER_ID}</span></span>
+<span id="L58"><span class="lineNum">      58</span> <span class="tlaGNC">           1 :     `, d.socketPath, d.tcpdumpContainerName)</span></span>
+<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">           1 :         command := []string{&quot;/bin/sh&quot;, &quot;-c&quot;, shellScript}</span></span>
+<span id="L60"><span class="lineNum">      60</span> <span class="tlaGNC">           1 :         return command</span></span>
+<span id="L61"><span class="lineNum">      61</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L62"><span class="lineNum">      62</span>              : </span>
+<span id="L63"><span class="lineNum">      63</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) GetDefaultImage() string {</span></span>
+<span id="L64"><span class="lineNum">      64</span> <span class="tlaGNC">           1 :         return &quot;docker.io/hamravesh/ksniff-helper:v3&quot;</span></span>
+<span id="L65"><span class="lineNum">      65</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L66"><span class="lineNum">      66</span>              : </span>
+<span id="L67"><span class="lineNum">      67</span> <span class="tlaGNC">           1 : func (d *ContainerdBridge) GetDefaultTCPImage() string {</span></span>
+<span id="L68"><span class="lineNum">      68</span> <span class="tlaGNC">           1 :         return &quot;docker.io/maintained/tcpdump:latest&quot;</span></span>
+<span id="L69"><span class="lineNum">      69</span> <span class="tlaGNC">           1 : }</span></span>
+        </pre>
+              </td>
+            </tr>
+          </table>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/runtime/crio.go.gcov.html b/coverage_html/runtime/crio.go.gcov.html
new file mode 100644
index 0000000..ff3a3bf
--- /dev/null
+++ b/coverage_html/runtime/crio.go.gcov.html
@@ -0,0 +1,169 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime/crio.go</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - crio.go</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">63</td>
+            <td class="headerCovTableEntry">63</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <table cellpadding=0 cellspacing=0 border=0>
+            <tr>
+              <td><br></td>
+            </tr>
+            <tr>
+              <td>
+<pre class="sourceHeading">            Line data    Source code</pre>
+<pre class="source">
+<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
+<span id="L2"><span class="lineNum">       2</span>              : </span>
+<span id="L3"><span class="lineNum">       3</span>              : import (</span>
+<span id="L4"><span class="lineNum">       4</span>              :         &quot;encoding/json&quot;</span>
+<span id="L5"><span class="lineNum">       5</span>              :         &quot;fmt&quot;</span>
+<span id="L6"><span class="lineNum">       6</span>              : </span>
+<span id="L7"><span class="lineNum">       7</span>              :         &quot;github.com/pkg/errors&quot;</span>
+<span id="L8"><span class="lineNum">       8</span>              : )</span>
+<span id="L9"><span class="lineNum">       9</span>              : </span>
+<span id="L10"><span class="lineNum">      10</span>              : type CrioBridge struct {</span>
+<span id="L11"><span class="lineNum">      11</span>              : }</span>
+<span id="L12"><span class="lineNum">      12</span>              : </span>
+<span id="L13"><span class="lineNum">      13</span> <span class="tlaGNC">          20 : func NewCrioBridge() *CrioBridge {</span></span>
+<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">          20 :         return &amp;CrioBridge{}</span></span>
+<span id="L15"><span class="lineNum">      15</span> <span class="tlaGNC">          20 : }</span></span>
+<span id="L16"><span class="lineNum">      16</span>              : </span>
+<span id="L17"><span class="lineNum">      17</span> <span class="tlaGNC">           1 : func (c *CrioBridge) NeedsPid() bool {</span></span>
+<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 :         return true</span></span>
+<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L20"><span class="lineNum">      20</span>              : </span>
+<span id="L21"><span class="lineNum">      21</span> <span class="tlaGNC">           1 : func (c *CrioBridge) BuildInspectCommand(containerId string) []string {</span></span>
+<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           1 :         return []string{&quot;chroot&quot;, &quot;/host&quot;, &quot;crictl&quot;, &quot;inspect&quot;,</span></span>
+<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           1 :                 &quot;--output&quot;, &quot;json&quot;, containerId}</span></span>
+<span id="L24"><span class="lineNum">      24</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L25"><span class="lineNum">      25</span>              : </span>
+<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">          12 : func (c *CrioBridge) ExtractPid(inspection string) (*string, error) {</span></span>
+<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">          12 :         var result map[string]json.RawMessage</span></span>
+<span id="L28"><span class="lineNum">      28</span> <span class="tlaGNC">          12 :         var pid float64</span></span>
+<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">          12 :         var err error</span></span>
+<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">          12 : </span></span>
+<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">          12 :         err = json.Unmarshal([]byte(inspection), &amp;result)</span></span>
+<span id="L32"><span class="lineNum">      32</span> <span class="tlaGNC">          12 :         if err != nil {</span></span>
+<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           3 :                 return nil, err</span></span>
+<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           3 :         }</span></span>
+<span id="L35"><span class="lineNum">      35</span>              : </span>
+<span id="L36"><span class="lineNum">      36</span>              :         // CRI-O changes the way it reports PID so we have to by dynamic here</span>
+<span id="L37"><span class="lineNum">      37</span> <span class="tlaGNC">           9 :         if result[&quot;pid&quot;] != nil {</span></span>
+<span id="L38"><span class="lineNum">      38</span> <span class="tlaGNC">           3 :                 pid, err = extractPidCrio117(result)</span></span>
+<span id="L39"><span class="lineNum">      39</span> <span class="tlaGNC">           3 :                 if err != nil {</span></span>
+<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           1 :                         return nil, errors.Wrap(err, &quot;error getting container PID from CRI-O&quot;)</span></span>
+<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           1 :                 }</span></span>
+<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           6 :         } else if result[&quot;info&quot;] != nil {</span></span>
+<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           3 :                 pid, err = extractPidCrio118(result)</span></span>
+<span id="L44"><span class="lineNum">      44</span> <span class="tlaGNC">           3 :                 if err != nil {</span></span>
+<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           1 :                         return nil, errors.Wrap(err, &quot;error getting container PID from CRI-O&quot;)</span></span>
+<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           1 :                 }</span></span>
+<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">           3 :         } else {</span></span>
+<span id="L48"><span class="lineNum">      48</span> <span class="tlaGNC">           3 :                 return nil, errors.New(&quot;unable to identify CRI-O version&quot;)</span></span>
+<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">           3 :         }</span></span>
+<span id="L50"><span class="lineNum">      50</span>              : </span>
+<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           4 :         ret := fmt.Sprintf(&quot;%.0f&quot;, pid)</span></span>
+<span id="L52"><span class="lineNum">      52</span> <span class="tlaGNC">           4 :         return &amp;ret, nil</span></span>
+<span id="L53"><span class="lineNum">      53</span>              : }</span>
+<span id="L54"><span class="lineNum">      54</span>              : </span>
+<span id="L55"><span class="lineNum">      55</span> <span class="tlaGNC">           1 : func (c *CrioBridge) BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string {</span></span>
+<span id="L56"><span class="lineNum">      56</span> <span class="tlaGNC">           1 :         return []string{&quot;nsenter&quot;, &quot;-n&quot;, &quot;-t&quot;, *pid, &quot;--&quot;, &quot;tcpdump&quot;, &quot;-i&quot;, netInterface, &quot;-U&quot;, &quot;-w&quot;, &quot;-&quot;, filter}</span></span>
+<span id="L57"><span class="lineNum">      57</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L58"><span class="lineNum">      58</span>              : </span>
+<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">           1 : func (c *CrioBridge) BuildCleanupCommand() []string {</span></span>
+<span id="L60"><span class="lineNum">      60</span> <span class="tlaGNC">           1 :         return nil // No cleanup needed</span></span>
+<span id="L61"><span class="lineNum">      61</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L62"><span class="lineNum">      62</span>              : </span>
+<span id="L63"><span class="lineNum">      63</span> <span class="tlaGNC">           1 : func (c *CrioBridge) GetDefaultImage() string {</span></span>
+<span id="L64"><span class="lineNum">      64</span> <span class="tlaGNC">           1 :         return &quot;maintained/tcpdump&quot;</span></span>
+<span id="L65"><span class="lineNum">      65</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L66"><span class="lineNum">      66</span>              : </span>
+<span id="L67"><span class="lineNum">      67</span> <span class="tlaGNC">           1 : func (c *CrioBridge) GetDefaultSocketPath() string {</span></span>
+<span id="L68"><span class="lineNum">      68</span> <span class="tlaGNC">           1 :         return &quot;/var/run/crio/crio.sock&quot;</span></span>
+<span id="L69"><span class="lineNum">      69</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L70"><span class="lineNum">      70</span>              : </span>
+<span id="L71"><span class="lineNum">      71</span>              : // CRI-O 1.17 and older have pid as first-level attribute</span>
+<span id="L72"><span class="lineNum">      72</span> <span class="tlaGNC">           3 : func extractPidCrio117(partial map[string]json.RawMessage) (float64, error) {</span></span>
+<span id="L73"><span class="lineNum">      73</span> <span class="tlaGNC">           3 :         var result float64</span></span>
+<span id="L74"><span class="lineNum">      74</span> <span class="tlaGNC">           3 :         err := json.Unmarshal(partial[&quot;pid&quot;], &amp;result)</span></span>
+<span id="L75"><span class="lineNum">      75</span> <span class="tlaGNC">           3 :         if err != nil {</span></span>
+<span id="L76"><span class="lineNum">      76</span> <span class="tlaGNC">           1 :                 return -1, err</span></span>
+<span id="L77"><span class="lineNum">      77</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L78"><span class="lineNum">      78</span> <span class="tlaGNC">           2 :         return result, nil</span></span>
+<span id="L79"><span class="lineNum">      79</span>              : }</span>
+<span id="L80"><span class="lineNum">      80</span>              : </span>
+<span id="L81"><span class="lineNum">      81</span>              : // CRI-O 1.18 and later nest pid under info attribute</span>
+<span id="L82"><span class="lineNum">      82</span> <span class="tlaGNC">           3 : func extractPidCrio118(partial map[string]json.RawMessage) (float64, error) {</span></span>
+<span id="L83"><span class="lineNum">      83</span> <span class="tlaGNC">           3 :         var result map[string]interface{}</span></span>
+<span id="L84"><span class="lineNum">      84</span> <span class="tlaGNC">           3 :         err := json.Unmarshal(partial[&quot;info&quot;], &amp;result)</span></span>
+<span id="L85"><span class="lineNum">      85</span> <span class="tlaGNC">           3 :         if err != nil {</span></span>
+<span id="L86"><span class="lineNum">      86</span> <span class="tlaGNC">           1 :                 return -1, err</span></span>
+<span id="L87"><span class="lineNum">      87</span> <span class="tlaGNC">           1 :         }</span></span>
+<span id="L88"><span class="lineNum">      88</span> <span class="tlaGNC">           2 :         return result[&quot;pid&quot;].(float64), nil</span></span>
+<span id="L89"><span class="lineNum">      89</span>              : }</span>
+<span id="L90"><span class="lineNum">      90</span>              : </span>
+<span id="L91"><span class="lineNum">      91</span> <span class="tlaGNC">           1 : func (d *CrioBridge) GetDefaultTCPImage() string {</span></span>
+<span id="L92"><span class="lineNum">      92</span> <span class="tlaGNC">           1 :         return &quot;&quot;</span></span>
+<span id="L93"><span class="lineNum">      93</span> <span class="tlaGNC">           1 : }</span></span>
+        </pre>
+              </td>
+            </tr>
+          </table>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/runtime/docker.go.gcov.html b/coverage_html/runtime/docker.go.gcov.html
new file mode 100644
index 0000000..e57834d
--- /dev/null
+++ b/coverage_html/runtime/docker.go.gcov.html
@@ -0,0 +1,135 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime/docker.go</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - docker.go</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">36</td>
+            <td class="headerCovTableEntry">36</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <table cellpadding=0 cellspacing=0 border=0>
+            <tr>
+              <td><br></td>
+            </tr>
+            <tr>
+              <td>
+<pre class="sourceHeading">            Line data    Source code</pre>
+<pre class="source">
+<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
+<span id="L2"><span class="lineNum">       2</span>              : </span>
+<span id="L3"><span class="lineNum">       3</span>              : import (</span>
+<span id="L4"><span class="lineNum">       4</span>              :         &quot;fmt&quot;</span>
+<span id="L5"><span class="lineNum">       5</span>              : </span>
+<span id="L6"><span class="lineNum">       6</span>              :         &quot;ksniff/utils&quot;</span>
+<span id="L7"><span class="lineNum">       7</span>              : )</span>
+<span id="L8"><span class="lineNum">       8</span>              : </span>
+<span id="L9"><span class="lineNum">       9</span>              : type DockerBridge struct {</span>
+<span id="L10"><span class="lineNum">      10</span>              :         tcpdumpContainerName string</span>
+<span id="L11"><span class="lineNum">      11</span>              :         cleanupCommand       []string</span>
+<span id="L12"><span class="lineNum">      12</span>              : }</span>
+<span id="L13"><span class="lineNum">      13</span>              : </span>
+<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">          14 : func NewDockerBridge() *DockerBridge {</span></span>
+<span id="L15"><span class="lineNum">      15</span> <span class="tlaGNC">          14 :         return &amp;DockerBridge{}</span></span>
+<span id="L16"><span class="lineNum">      16</span> <span class="tlaGNC">          14 : }</span></span>
+<span id="L17"><span class="lineNum">      17</span>              : </span>
+<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 : func (d *DockerBridge) NeedsPid() bool {</span></span>
+<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           1 :         return false</span></span>
+<span id="L20"><span class="lineNum">      20</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L21"><span class="lineNum">      21</span>              : </span>
+<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           2 : func (d *DockerBridge) BuildInspectCommand(string) []string {</span></span>
+<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           2 :         panic(&quot;Docker doesn't need this implemented&quot;)</span></span>
+<span id="L24"><span class="lineNum">      24</span>              : }</span>
+<span id="L25"><span class="lineNum">      25</span>              : </span>
+<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           2 : func (d *DockerBridge) ExtractPid(inspection string) (*string, error) {</span></span>
+<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">           2 :         panic(&quot;Docker doesn't need this implemented&quot;)</span></span>
+<span id="L28"><span class="lineNum">      28</span>              : }</span>
+<span id="L29"><span class="lineNum">      29</span>              : </span>
+<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           4 : func (d *DockerBridge) BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string {</span></span>
+<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           4 :         d.tcpdumpContainerName = &quot;ksniff-container-&quot; + utils.GenerateRandomString(8)</span></span>
+<span id="L32"><span class="lineNum">      32</span> <span class="tlaGNC">           4 :         containerNameFlag := fmt.Sprintf(&quot;--name=%s&quot;, d.tcpdumpContainerName)</span></span>
+<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           4 : </span></span>
+<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           4 :         command := []string{&quot;docker&quot;, &quot;--host&quot;, &quot;unix://&quot; + socketPath,</span></span>
+<span id="L35"><span class="lineNum">      35</span> <span class="tlaGNC">           4 :                 &quot;run&quot;, &quot;--rm&quot;, &quot;--log-driver&quot;, &quot;none&quot;, containerNameFlag,</span></span>
+<span id="L36"><span class="lineNum">      36</span> <span class="tlaGNC">           4 :                 fmt.Sprintf(&quot;--net=container:%s&quot;, *containerId), tcpdumpImage, &quot;-i&quot;,</span></span>
+<span id="L37"><span class="lineNum">      37</span> <span class="tlaGNC">           4 :                 netInterface, &quot;-U&quot;, &quot;-w&quot;, &quot;-&quot;, filter}</span></span>
+<span id="L38"><span class="lineNum">      38</span> <span class="tlaGNC">           4 : </span></span>
+<span id="L39"><span class="lineNum">      39</span> <span class="tlaGNC">           4 :         d.cleanupCommand = []string{&quot;docker&quot;, &quot;--host&quot;, &quot;unix://&quot; + socketPath,</span></span>
+<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           4 :                 &quot;rm&quot;, &quot;-f&quot;, d.tcpdumpContainerName}</span></span>
+<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           4 : </span></span>
+<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           4 :         return command</span></span>
+<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           4 : }</span></span>
+<span id="L44"><span class="lineNum">      44</span>              : </span>
+<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           2 : func (d *DockerBridge) BuildCleanupCommand() []string {</span></span>
+<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           2 :         return d.cleanupCommand</span></span>
+<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">           2 : }</span></span>
+<span id="L48"><span class="lineNum">      48</span>              : </span>
+<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">           1 : func (d *DockerBridge) GetDefaultImage() string {</span></span>
+<span id="L50"><span class="lineNum">      50</span> <span class="tlaGNC">           1 :         return &quot;docker&quot;</span></span>
+<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           1 : }</span></span>
+<span id="L52"><span class="lineNum">      52</span>              : </span>
+<span id="L53"><span class="lineNum">      53</span> <span class="tlaGNC">           3 : func (d *DockerBridge) GetDefaultTCPImage() string {</span></span>
+<span id="L54"><span class="lineNum">      54</span> <span class="tlaGNC">           3 :         return &quot;maintained/tcpdump&quot;</span></span>
+<span id="L55"><span class="lineNum">      55</span> <span class="tlaGNC">           3 : }</span></span>
+<span id="L56"><span class="lineNum">      56</span>              : </span>
+<span id="L57"><span class="lineNum">      57</span> <span class="tlaGNC">           1 : func (d *DockerBridge) GetDefaultSocketPath() string {</span></span>
+<span id="L58"><span class="lineNum">      58</span> <span class="tlaGNC">           1 :         return &quot;/var/run/docker.sock&quot;</span></span>
+<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">           1 : }</span></span>
+        </pre>
+              </td>
+            </tr>
+          </table>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/runtime/index-sort-f.html b/coverage_html/runtime/index-sort-f.html
new file mode 100644
index 0000000..63f8155
--- /dev/null
+++ b/coverage_html/runtime/index-sort-f.html
@@ -0,0 +1,125 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - runtime</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">156</td>
+            <td class="headerCovTableEntry">156</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="../updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="../updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="containerd.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/containerd.go">containerd.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">47</td>
+              <td class="coverNumDflt">47</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="crio.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/crio.go">crio.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">63</td>
+              <td class="coverNumDflt">63</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="docker.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/docker.go">docker.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="runtime.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/runtime.go">runtime.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">10</td>
+              <td class="coverNumDflt">10</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/runtime/index-sort-l.html b/coverage_html/runtime/index-sort-l.html
new file mode 100644
index 0000000..c5a57a3
--- /dev/null
+++ b/coverage_html/runtime/index-sort-l.html
@@ -0,0 +1,125 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - runtime</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">156</td>
+            <td class="headerCovTableEntry">156</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="../updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="runtime.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/runtime.go">runtime.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">10</td>
+              <td class="coverNumDflt">10</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="docker.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/docker.go">docker.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="containerd.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/containerd.go">containerd.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">47</td>
+              <td class="coverNumDflt">47</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="crio.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/crio.go">crio.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">63</td>
+              <td class="coverNumDflt">63</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/runtime/index.html b/coverage_html/runtime/index.html
new file mode 100644
index 0000000..fe1e59e
--- /dev/null
+++ b/coverage_html/runtime/index.html
@@ -0,0 +1,125 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - runtime</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">156</td>
+            <td class="headerCovTableEntry">156</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <center>
+          <table width="80%" cellpadding=1 cellspacing=1 border=0>
+
+            <tr>
+              <td width="40%"><br></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            <td width="15%"></td>
+            </tr>
+
+            <tr>
+              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
+        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="../updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
+            </tr>
+            <tr>
+                    <td class="tableHead" colspan=2> Rate</td>
+                    <td class="tableHead"> Total</td>
+                    <td class="tableHead"> Hit</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="containerd.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/containerd.go">containerd.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">47</td>
+              <td class="coverNumDflt">47</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="crio.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/crio.go">crio.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">63</td>
+              <td class="coverNumDflt">63</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="docker.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/docker.go">docker.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">36</td>
+              <td class="coverNumDflt">36</td>
+            </tr>
+            <tr>
+              <td class="coverFile"><a href="runtime.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/runtime.go">runtime.go</a></td>
+              <td class="coverBar" align="center">
+                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
+              </td>
+              <td class="coverPerHi">100.0&nbsp;%</td>
+              <td class="coverNumDflt">10</td>
+              <td class="coverNumDflt">10</td>
+            </tr>
+        <tr>
+          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
+         </tr>
+          </table>
+          </center>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/runtime/runtime.go.gcov.html b/coverage_html/runtime/runtime.go.gcov.html
new file mode 100644
index 0000000..c07db6b
--- /dev/null
+++ b/coverage_html/runtime/runtime.go.gcov.html
@@ -0,0 +1,109 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
+
+<html lang="en">
+
+<head>
+  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
+  <title>LCOV - _coverage_report.dat - runtime/runtime.go</title>
+  <link rel="stylesheet" type="text/css" href="../gcov.css">
+</head>
+
+<body>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="title">LCOV - code coverage report</td></tr>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+
+            <tr>
+              <td width="100%">
+                <table cellpadding=1 border=0 width="100%">
+          <tr>
+            <td width="10%" class="headerItem">Current view:</td>
+            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - runtime.go</td>
+            <td width="5%"></td>
+            <td width="5%"></td>
+            <td width="5%" class="headerCovTableHead">Coverage</td>
+            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
+            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test:</td>
+            <td class="headerValue">_coverage_report.dat</td>
+            <td></td>
+            <td class="headerItem">Lines:</td>
+            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
+            <td class="headerCovTableEntry">10</td>
+            <td class="headerCovTableEntry">10</td>
+          </tr>
+          <tr>
+            <td class="headerItem">Test Date:</td>
+            <td class="headerValue">2026-01-23 11:51:52</td>
+            <td></td>
+            <td class="headerItem">Functions:</td>
+            <td class="headerCovTableEntryHi">-</td>
+            <td class="headerCovTableEntry">0</td>
+            <td class="headerCovTableEntry">0</td>
+          </tr>
+                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+                </table>
+              </td>
+            </tr>
+
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+          </table>
+
+          <table cellpadding=0 cellspacing=0 border=0>
+            <tr>
+              <td><br></td>
+            </tr>
+            <tr>
+              <td>
+<pre class="sourceHeading">            Line data    Source code</pre>
+<pre class="source">
+<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
+<span id="L2"><span class="lineNum">       2</span>              : </span>
+<span id="L3"><span class="lineNum">       3</span>              : import &quot;fmt&quot;</span>
+<span id="L4"><span class="lineNum">       4</span>              : </span>
+<span id="L5"><span class="lineNum">       5</span>              : var SupportedContainerRuntimes = []string{</span>
+<span id="L6"><span class="lineNum">       6</span>              :         &quot;docker&quot;,</span>
+<span id="L7"><span class="lineNum">       7</span>              :         &quot;cri-o&quot;,</span>
+<span id="L8"><span class="lineNum">       8</span>              :         &quot;containerd&quot;,</span>
+<span id="L9"><span class="lineNum">       9</span>              : }</span>
+<span id="L10"><span class="lineNum">      10</span>              : </span>
+<span id="L11"><span class="lineNum">      11</span>              : type ContainerRuntimeBridge interface {</span>
+<span id="L12"><span class="lineNum">      12</span>              :         NeedsPid() bool</span>
+<span id="L13"><span class="lineNum">      13</span>              :         BuildInspectCommand(containerId string) []string</span>
+<span id="L14"><span class="lineNum">      14</span>              :         ExtractPid(inspection string) (*string, error)</span>
+<span id="L15"><span class="lineNum">      15</span>              :         BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string</span>
+<span id="L16"><span class="lineNum">      16</span>              :         BuildCleanupCommand() []string</span>
+<span id="L17"><span class="lineNum">      17</span>              :         GetDefaultImage() string</span>
+<span id="L18"><span class="lineNum">      18</span>              :         GetDefaultTCPImage() string</span>
+<span id="L19"><span class="lineNum">      19</span>              :         GetDefaultSocketPath() string</span>
+<span id="L20"><span class="lineNum">      20</span>              : }</span>
+<span id="L21"><span class="lineNum">      21</span>              : </span>
+<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           6 : func NewContainerRuntimeBridge(runtimeName string) ContainerRuntimeBridge {</span></span>
+<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           6 :         switch runtimeName {</span></span>
+<span id="L24"><span class="lineNum">      24</span> <span class="tlaGNC">           2 :         case &quot;docker&quot;:</span></span>
+<span id="L25"><span class="lineNum">      25</span> <span class="tlaGNC">           2 :                 return NewDockerBridge()</span></span>
+<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           1 :         case &quot;cri-o&quot;:</span></span>
+<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">           1 :                 return NewCrioBridge()</span></span>
+<span id="L28"><span class="lineNum">      28</span> <span class="tlaGNC">           2 :         case &quot;containerd&quot;:</span></span>
+<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">           2 :                 return NewContainerdBridge()</span></span>
+<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           1 :         default:</span></span>
+<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           1 :                 panic(fmt.Sprintf(&quot;Unable to build bridge to %s&quot;, runtimeName))</span></span>
+<span id="L32"><span class="lineNum">      32</span>              :         }</span>
+<span id="L33"><span class="lineNum">      33</span>              : }</span>
+        </pre>
+              </td>
+            </tr>
+          </table>
+          <br>
+
+          <table width="100%" border=0 cellspacing=0 cellpadding=0>
+            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
+            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
+          </table>
+          <br>
+
+</body>
+</html>
diff --git a/coverage_html/snow.png b/coverage_html/snow.png
new file mode 100644
index 0000000000000000000000000000000000000000..2cdae107fceec6e7f02ac7acb4a34a82a540caa5
GIT binary patch
literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^MM<OZU7F1qyK%
zctjR6FmMZjFyp1Wb$@_@Ea{HEjtmSN`?>!lvI6;R0X`wF|Ns97GD8ntt^-nBo-U3d
c6}OTTfNUlP#;5A{K>8RwUHx3vIVCg!071?oo&W#<

literal 0
HcmV?d00001

diff --git a/coverage_html/updown.png b/coverage_html/updown.png
new file mode 100644
index 0000000000000000000000000000000000000000..aa56a238b3e6c435265250f9266cd1b8caba0f20
GIT binary patch
literal 117
zcmeAS@N?(olHy`uVBq!ia0vp^AT}Qd8;}%R+`Ae`*?77*hG?8mPH<rUzmOqzj$o`{
zmx{8oa+_1mG6n6lBg;7=4V4vL4GtVJNND(#r(##(!Bvp7XhP!+7e<DcG5TL0&E@|I
PG>5^{)z4*}Q$iB}huR`+

literal 0
HcmV?d00001

diff --git a/go.mod b/go.mod
index 48353a2..be432c0 100644
--- a/go.mod
+++ b/go.mod
@@ -9,12 +9,10 @@ require (
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
 	github.com/imdario/mergo v0.3.8 // indirect
 	github.com/mitchellh/go-homedir v1.1.0
-	github.com/pelletier/go-toml v1.6.0 // indirect
 	github.com/pkg/errors v0.9.1
 	github.com/sirupsen/logrus v1.8.3
 	github.com/spf13/cast v1.3.1 // indirect
 	github.com/spf13/cobra v1.1.3
-	github.com/spf13/jwalterweatherman v1.1.0 // indirect
 	github.com/spf13/pflag v1.0.5
 	github.com/spf13/viper v1.7.0
 	github.com/stretchr/testify v1.7.0
@@ -25,4 +23,71 @@ require (
 	k8s.io/client-go v0.20.6
 )
 
-go 1.13
+require (
+	cloud.google.com/go v0.54.0 // indirect
+	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
+	github.com/Azure/go-autorest/autorest v0.11.1 // indirect
+	github.com/Azure/go-autorest/autorest/adal v0.9.5 // indirect
+	github.com/Azure/go-autorest/autorest/date v0.3.0 // indirect
+	github.com/Azure/go-autorest/logger v0.2.0 // indirect
+	github.com/Azure/go-autorest/tracing v0.6.0 // indirect
+	github.com/PuerkitoBio/purell v1.1.1 // indirect
+	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
+	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/docker/spdystream v0.0.0-20181023171402-6480d4af844c // indirect
+	github.com/elazarl/goproxy v0.0.0-20181003060214-f58a169a71a5 // indirect
+	github.com/emicklei/go-restful v2.11.1+incompatible // indirect
+	github.com/evanphx/json-patch v4.9.0+incompatible // indirect
+	github.com/form3tech-oss/jwt-go v3.2.2+incompatible // indirect
+	github.com/fsnotify/fsnotify v1.4.9 // indirect
+	github.com/ghodss/yaml v1.0.0 // indirect
+	github.com/go-logr/logr v0.2.0 // indirect
+	github.com/go-openapi/jsonpointer v0.19.3 // indirect
+	github.com/go-openapi/jsonreference v0.19.3 // indirect
+	github.com/go-openapi/spec v0.19.5 // indirect
+	github.com/go-openapi/swag v0.19.6 // indirect
+	github.com/gogo/protobuf v1.3.2 // indirect
+	github.com/golang/protobuf v1.4.3 // indirect
+	github.com/google/btree v1.0.0 // indirect
+	github.com/google/gofuzz v1.1.0 // indirect
+	github.com/googleapis/gnostic v0.4.1 // indirect
+	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
+	github.com/hashicorp/hcl v1.0.0 // indirect
+	github.com/imdario/mergo v0.3.8 // indirect
+	github.com/inconshreveable/mousetrap v1.0.0 // indirect
+	github.com/json-iterator/go v1.1.10 // indirect
+	github.com/konsorten/go-windows-terminal-sequences v1.0.2 // indirect
+	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
+	github.com/magiconair/properties v1.8.1 // indirect
+	github.com/mailru/easyjson v0.7.0 // indirect
+	github.com/mitchellh/mapstructure v1.1.2 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
+	github.com/modern-go/reflect2 v1.0.1 // indirect
+	github.com/pelletier/go-toml v1.6.0 // indirect
+	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
+	github.com/pmezard/go-difflib v1.0.0 // indirect
+	github.com/spf13/afero v1.2.2 // indirect
+	github.com/spf13/cast v1.3.1 // indirect
+	github.com/spf13/jwalterweatherman v1.1.0 // indirect
+	github.com/subosito/gotenv v1.2.0 // indirect
+	golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0 // indirect
+	golang.org/x/net v0.0.0-20201110031124-69a78807bb2b // indirect
+	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
+	golang.org/x/sys v0.0.0-20201112073958-5cba982894dd // indirect
+	golang.org/x/text v0.3.4 // indirect
+	golang.org/x/time v0.0.0-20200630173020-3af7569d3a1e // indirect
+	google.golang.org/appengine v1.6.5 // indirect
+	google.golang.org/protobuf v1.25.0 // indirect
+	gopkg.in/inf.v0 v0.9.1 // indirect
+	gopkg.in/ini.v1 v1.51.1 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+	gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c // indirect
+	k8s.io/klog/v2 v2.4.0 // indirect
+	k8s.io/kube-openapi v0.0.0-20201113171705-d219536bb9fd // indirect
+	k8s.io/utils v0.0.0-20201110183641-67b214c5f920 // indirect
+	sigs.k8s.io/kustomize v2.0.3+incompatible // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.0.3 // indirect
+	sigs.k8s.io/yaml v1.2.0 // indirect
+)
+
+go 1.17
diff --git a/kube/BUILD.bazel b/kube/BUILD.bazel
new file mode 100644
index 0000000..702c8da
--- /dev/null
+++ b/kube/BUILD.bazel
@@ -0,0 +1,26 @@
+load("@rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "kube",
+    srcs = [
+        "kubernetes_api_service.go",
+        "ops.go",
+        "tar.go",
+    ],
+    importpath = "ksniff/kube",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//pkg/service/sniffer/runtime",
+        "//utils",
+        "@com_github_pkg_errors//:errors",
+        "@com_github_sirupsen_logrus//:logrus",
+        "@io_k8s_api//core/v1:core",
+        "@io_k8s_apimachinery//pkg/api/resource",
+        "@io_k8s_apimachinery//pkg/apis/meta/v1:meta",
+        "@io_k8s_client_go//kubernetes",
+        "@io_k8s_client_go//kubernetes/scheme",
+        "@io_k8s_client_go//rest",
+        "@io_k8s_client_go//tools/remotecommand",
+        "@io_k8s_client_go//util/exec",
+    ],
+)
diff --git a/kube/kubernetes_api_service.go b/kube/kubernetes_api_service.go
index 1ed14a6..8e7ed51 100644
--- a/kube/kubernetes_api_service.go
+++ b/kube/kubernetes_api_service.go
@@ -31,12 +31,12 @@ type KubernetesApiService interface {
 }
 
 type KubernetesApiServiceImpl struct {
-	clientset       *kubernetes.Clientset
+	clientset       kubernetes.Interface
 	restConfig      *rest.Config
 	targetNamespace string
 }
 
-func NewKubernetesApiService(clientset *kubernetes.Clientset,
+func NewKubernetesApiService(clientset kubernetes.Interface,
 	restConfig *rest.Config, targetNamespace string) KubernetesApiService {
 
 	return &KubernetesApiServiceImpl{clientset: clientset,
diff --git a/kube/ops.go b/kube/ops.go
index 27326fa..dc4bb5c 100644
--- a/kube/ops.go
+++ b/kube/ops.go
@@ -16,7 +16,7 @@ import (
 )
 
 type KubeRequest struct {
-	Clientset  *kubernetes.Clientset
+	Clientset  kubernetes.Interface
 	RestConfig *rest.Config
 	Namespace  string
 	Pod        string
diff --git a/pkg/cmd/BUILD.bazel b/pkg/cmd/BUILD.bazel
new file mode 100644
index 0000000..9067d10
--- /dev/null
+++ b/pkg/cmd/BUILD.bazel
@@ -0,0 +1,46 @@
+load("@rules_go//go:def.bzl", "go_library", "go_test")
+
+go_library(
+    name = "cmd",
+    srcs = ["sniff.go"],
+    importpath = "ksniff/pkg/cmd",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//kube",
+        "//pkg/config",
+        "//pkg/service/sniffer",
+        "//pkg/service/sniffer/runtime",
+        "@com_github_mitchellh_go_homedir//:go-homedir",
+        "@com_github_pkg_errors//:errors",
+        "@com_github_sirupsen_logrus//:logrus",
+        "@com_github_spf13_cobra//:cobra",
+        "@com_github_spf13_viper//:viper",
+        "@io_k8s_api//core/v1:core",
+        "@io_k8s_apimachinery//pkg/apis/meta/v1:meta",
+        "@io_k8s_cli_runtime//pkg/genericclioptions",
+        "@io_k8s_client_go//kubernetes",
+        "@io_k8s_client_go//plugin/pkg/client/auth/azure",
+        "@io_k8s_client_go//plugin/pkg/client/auth/gcp",
+        "@io_k8s_client_go//plugin/pkg/client/auth/oidc",
+        "@io_k8s_client_go//rest",
+        "@io_k8s_client_go//tools/clientcmd",
+        "@io_k8s_client_go//tools/clientcmd/api",
+    ],
+)
+
+go_test(
+    name = "cmd_test",
+    srcs = ["sniff_test.go"],
+    embed = [":cmd"],
+    deps = [
+        "//pkg/config",
+        "@com_github_spf13_cobra//:cobra",
+        "@com_github_stretchr_testify//assert",
+        "@io_k8s_api//core/v1:core",
+        "@io_k8s_apimachinery//pkg/apis/meta/v1:meta",
+        "@io_k8s_cli_runtime//pkg/genericclioptions",
+        "@io_k8s_client_go//kubernetes/fake",
+        "@io_k8s_client_go//rest",
+        "@io_k8s_client_go//tools/clientcmd/api",
+    ],
+)
diff --git a/pkg/cmd/sniff.go b/pkg/cmd/sniff.go
index c79db3e..8b9fcce 100644
--- a/pkg/cmd/sniff.go
+++ b/pkg/cmd/sniff.go
@@ -48,7 +48,7 @@ var tcpdumpLocalBinaryPathLookupList []string
 type Ksniff struct {
 	configFlags      *genericclioptions.ConfigFlags
 	resultingContext *api.Context
-	clientset        *kubernetes.Clientset
+	clientset        kubernetes.Interface
 	restConfig       *rest.Config
 	rawConfig        api.Config
 	settings         *config.KsniffSettings
@@ -159,7 +159,22 @@ func NewCmdSniff(streams genericclioptions.IOStreams) *cobra.Command {
 }
 
 func (o *Ksniff) Complete(cmd *cobra.Command, args []string) error {
+	// Validate and populate basic settings
+	if err := o.completeBasicSettings(cmd, args); err != nil {
+		return err
+	}
+
+	// Load Kubernetes configuration
+	if err := o.loadKubeConfig(); err != nil {
+		return err
+	}
+
+	return nil
+}
 
+// completeBasicSettings validates arguments and populates settings from viper
+// This method doesn't require Kubernetes configuration and can be tested independently
+func (o *Ksniff) completeBasicSettings(cmd *cobra.Command, args []string) error {
 	if len(args) < minimumNumberOfArguments {
 		_ = cmd.Usage()
 		return errors.New("not enough arguments")
@@ -188,18 +203,25 @@ func (o *Ksniff) Complete(cmd *cobra.Command, args []string) error {
 	o.settings.UseDefaultSocketPath = !viper.IsSet("socket")
 	o.settings.UserSpecifiedServiceAccount = viper.GetString("serviceaccount")
 
-	var err error
-
 	if o.settings.UserSpecifiedVerboseMode {
 		log.Info("running in verbose mode")
 		log.SetLevel(log.DebugLevel)
 	}
 
+	var err error
 	tcpdumpLocalBinaryPathLookupList, err = o.buildTcpdumpBinaryPathLookupList()
 	if err != nil {
 		return err
 	}
 
+	return nil
+}
+
+// loadKubeConfig loads the Kubernetes configuration and initializes the clientset
+// This method is separated to allow for easier testing and mocking
+func (o *Ksniff) loadKubeConfig() error {
+	var err error
+
 	o.rawConfig, err = o.configFlags.ToRawKubeConfigLoader().RawConfig()
 	if err != nil {
 		return err
diff --git a/pkg/cmd/sniff_test.go b/pkg/cmd/sniff_test.go
index 2872c4b..f7172ec 100644
--- a/pkg/cmd/sniff_test.go
+++ b/pkg/cmd/sniff_test.go
@@ -1,14 +1,19 @@
 package cmd
 
 import (
+	"context"
 	"ksniff/pkg/config"
 	"strings"
+	"testing"
 
 	"github.com/spf13/cobra"
 	"github.com/stretchr/testify/assert"
+	corev1 "k8s.io/api/core/v1"
+	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/cli-runtime/pkg/genericclioptions"
-
-	"testing"
+	"k8s.io/client-go/kubernetes/fake"
+	"k8s.io/client-go/rest"
+	"k8s.io/client-go/tools/clientcmd/api"
 )
 
 func TestComplete_NotEnoughArguments(t *testing.T) {
@@ -49,9 +54,452 @@ func TestComplete_PodNameSpecified(t *testing.T) {
 	var commands []string
 
 	// when
-	err := sniff.Complete(cmd, append(commands, "pod-name"))
+	// Only test the basic settings completion, not the kubeconfig loading
+	err := sniff.completeBasicSettings(cmd, append(commands, "pod-name"))
 
 	// then
 	assert.Nil(t, err)
 	assert.Equal(t, "pod-name", settings.UserSpecifiedPodName)
 }
+
+func TestCompleteBasicSettings_WithMultipleFlags(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set some flags
+	_ = cmd.Flags().Set("namespace", "test-namespace")
+	_ = cmd.Flags().Set("container", "test-container")
+	_ = cmd.Flags().Set("interface", "eth0")
+	_ = cmd.Flags().Set("filter", "port 80")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "test-pod", settings.UserSpecifiedPodName)
+	assert.Equal(t, "test-namespace", settings.UserSpecifiedNamespace)
+	assert.Equal(t, "test-container", settings.UserSpecifiedContainer)
+	assert.Equal(t, "eth0", settings.UserSpecifiedInterface)
+	assert.Equal(t, "port 80", settings.UserSpecifiedFilter)
+}
+
+func TestCompleteBasicSettings_WithPrivilegedMode(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set privileged mode flag
+	_ = cmd.Flags().Set("privileged", "true")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.True(t, settings.UserSpecifiedPrivilegedMode)
+}
+
+func TestCompleteBasicSettings_WithOutputFile(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set output file flag
+	_ = cmd.Flags().Set("output-file", "/tmp/capture.pcap")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "/tmp/capture.pcap", settings.UserSpecifiedOutputFile)
+}
+
+func TestCompleteBasicSettings_WithVerboseMode(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set verbose mode flag
+	_ = cmd.Flags().Set("verbose", "true")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.True(t, settings.UserSpecifiedVerboseMode)
+}
+
+func TestCompleteBasicSettings_WithImage(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set image flag
+	_ = cmd.Flags().Set("image", "custom/tcpdump:latest")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "custom/tcpdump:latest", settings.Image)
+	assert.False(t, settings.UseDefaultImage)
+}
+
+func TestCompleteBasicSettings_WithTcpdumpImage(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set tcpdump-image flag
+	_ = cmd.Flags().Set("tcpdump-image", "custom/tcpdump:v2")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "custom/tcpdump:v2", settings.TCPDumpImage)
+	assert.False(t, settings.UseDefaultTCPDumpImage)
+}
+
+func TestCompleteBasicSettings_WithSocket(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set socket flag
+	_ = cmd.Flags().Set("socket", "/custom/path/docker.sock")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "/custom/path/docker.sock", settings.SocketPath)
+	assert.False(t, settings.UseDefaultSocketPath)
+}
+
+func TestCompleteBasicSettings_WithServiceAccount(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set serviceaccount flag
+	_ = cmd.Flags().Set("serviceaccount", "custom-sa")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "custom-sa", settings.UserSpecifiedServiceAccount)
+}
+
+func TestCompleteBasicSettings_WithLocalTcpdump(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set local-tcpdump-path flag
+	_ = cmd.Flags().Set("local-tcpdump-path", "/usr/bin/tcpdump")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "/usr/bin/tcpdump", settings.UserSpecifiedLocalTcpdumpPath)
+}
+
+// Tests with mocked Kubernetes client
+
+func TestValidate_WithRunningPod(t *testing.T) {
+	// Create fake clientset
+	fakeClientset := fake.NewSimpleClientset()
+
+	// Create test pod
+	testPod := &corev1.Pod{
+		ObjectMeta: v1.ObjectMeta{
+			Name:      "test-pod",
+			Namespace: "default",
+		},
+		Spec: corev1.PodSpec{
+			NodeName: "test-node",
+			Containers: []corev1.Container{
+				{Name: "test-container"},
+			},
+		},
+		Status: corev1.PodStatus{
+			Phase: corev1.PodRunning,
+			ContainerStatuses: []corev1.ContainerStatus{
+				{
+					Name:        "test-container",
+					ContainerID: "docker://abc123",
+				},
+			},
+		},
+	}
+
+	// Add pod to fake clientset
+	_, err := fakeClientset.CoreV1().Pods("default").Create(context.TODO(), testPod, v1.CreateOptions{})
+	assert.Nil(t, err)
+
+	// Create Ksniff instance with mocked clientset
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	settings.UserSpecifiedPodName = "test-pod"
+	settings.UserSpecifiedContainer = "test-container"
+	settings.UserSpecifiedPrivilegedMode = true // Use privileged mode to avoid tcpdump binary check
+
+	ksniff := NewKsniff(settings)
+	ksniff.clientset = fakeClientset
+	ksniff.rawConfig = api.Config{CurrentContext: "test-context"}
+	ksniff.resultingContext = &api.Context{Namespace: "default"}
+	ksniff.restConfig = &rest.Config{}
+
+	// Test Validate
+	err = ksniff.Validate()
+	assert.Nil(t, err)
+	assert.Equal(t, "test-node", settings.DetectedPodNodeName)
+	assert.Equal(t, "docker", settings.DetectedContainerRuntime)
+	assert.Equal(t, "abc123", settings.DetectedContainerId)
+}
+
+func TestValidate_PodNotFound(t *testing.T) {
+	// Create fake clientset with no pods
+	fakeClientset := fake.NewSimpleClientset()
+
+	// Create Ksniff instance with mocked clientset
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	settings.UserSpecifiedPodName = "nonexistent-pod"
+	settings.UserSpecifiedPrivilegedMode = true // Use privileged mode to avoid tcpdump binary check
+
+	ksniff := NewKsniff(settings)
+	ksniff.clientset = fakeClientset
+	ksniff.rawConfig = api.Config{CurrentContext: "test-context"}
+	ksniff.resultingContext = &api.Context{Namespace: "default"}
+	ksniff.restConfig = &rest.Config{}
+
+	// Test Validate
+	err := ksniff.Validate()
+	assert.NotNil(t, err)
+	assert.Contains(t, err.Error(), "not found")
+}
+
+func TestValidate_PodInFailedState(t *testing.T) {
+	// Create fake clientset
+	fakeClientset := fake.NewSimpleClientset()
+
+	// Create test pod in failed state
+	testPod := &corev1.Pod{
+		ObjectMeta: v1.ObjectMeta{
+			Name:      "failed-pod",
+			Namespace: "default",
+		},
+		Spec: corev1.PodSpec{
+			NodeName: "test-node",
+			Containers: []corev1.Container{
+				{Name: "test-container"},
+			},
+		},
+		Status: corev1.PodStatus{
+			Phase: corev1.PodFailed,
+		},
+	}
+
+	// Add pod to fake clientset
+	_, err := fakeClientset.CoreV1().Pods("default").Create(context.TODO(), testPod, v1.CreateOptions{})
+	assert.Nil(t, err)
+
+	// Create Ksniff instance with mocked clientset
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	settings.UserSpecifiedPodName = "failed-pod"
+	settings.UserSpecifiedPrivilegedMode = true // Use privileged mode to avoid tcpdump binary check
+
+	ksniff := NewKsniff(settings)
+	ksniff.clientset = fakeClientset
+	ksniff.rawConfig = api.Config{CurrentContext: "test-context"}
+	ksniff.resultingContext = &api.Context{Namespace: "default"}
+	ksniff.restConfig = &rest.Config{}
+
+	// Test Validate
+	err = ksniff.Validate()
+	assert.NotNil(t, err)
+	assert.Contains(t, err.Error(), "cannot sniff on a container in a completed pod")
+}
+
+func TestValidate_PodWithNoContainers(t *testing.T) {
+	// Create fake clientset
+	fakeClientset := fake.NewSimpleClientset()
+
+	// Create test pod with no containers
+	testPod := &corev1.Pod{
+		ObjectMeta: v1.ObjectMeta{
+			Name:      "empty-pod",
+			Namespace: "default",
+		},
+		Spec: corev1.PodSpec{
+			NodeName:   "test-node",
+			Containers: []corev1.Container{}, // No containers
+		},
+		Status: corev1.PodStatus{
+			Phase: corev1.PodRunning,
+		},
+	}
+
+	// Add pod to fake clientset
+	_, err := fakeClientset.CoreV1().Pods("default").Create(context.TODO(), testPod, v1.CreateOptions{})
+	assert.Nil(t, err)
+
+	// Create Ksniff instance with mocked clientset
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	settings.UserSpecifiedPodName = "empty-pod"
+	settings.UserSpecifiedPrivilegedMode = true
+
+	ksniff := NewKsniff(settings)
+	ksniff.clientset = fakeClientset
+	ksniff.rawConfig = api.Config{CurrentContext: "test-context"}
+	ksniff.resultingContext = &api.Context{Namespace: "default"}
+	ksniff.restConfig = &rest.Config{}
+
+	// Test Validate
+	err = ksniff.Validate()
+	assert.NotNil(t, err)
+	assert.Contains(t, err.Error(), "no containers in specified pod")
+}
+
+func TestValidate_AutoSelectFirstContainer(t *testing.T) {
+	// Create fake clientset
+	fakeClientset := fake.NewSimpleClientset()
+
+	// Create test pod with multiple containers
+	testPod := &corev1.Pod{
+		ObjectMeta: v1.ObjectMeta{
+			Name:      "multi-container-pod",
+			Namespace: "default",
+		},
+		Spec: corev1.PodSpec{
+			NodeName: "test-node",
+			Containers: []corev1.Container{
+				{Name: "first-container"},
+				{Name: "second-container"},
+			},
+		},
+		Status: corev1.PodStatus{
+			Phase: corev1.PodRunning,
+			ContainerStatuses: []corev1.ContainerStatus{
+				{
+					Name:        "first-container",
+					ContainerID: "containerd://xyz789",
+				},
+				{
+					Name:        "second-container",
+					ContainerID: "containerd://abc123",
+				},
+			},
+		},
+	}
+
+	// Add pod to fake clientset
+	_, err := fakeClientset.CoreV1().Pods("default").Create(context.TODO(), testPod, v1.CreateOptions{})
+	assert.Nil(t, err)
+
+	// Create Ksniff instance with mocked clientset (no container specified)
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	settings.UserSpecifiedPodName = "multi-container-pod"
+	settings.UserSpecifiedPrivilegedMode = true
+	// Don't specify container - should auto-select first one
+
+	ksniff := NewKsniff(settings)
+	ksniff.clientset = fakeClientset
+	ksniff.rawConfig = api.Config{CurrentContext: "test-context"}
+	ksniff.resultingContext = &api.Context{Namespace: "default"}
+	ksniff.restConfig = &rest.Config{}
+
+	// Test Validate
+	err = ksniff.Validate()
+	assert.Nil(t, err)
+	assert.Equal(t, "first-container", settings.UserSpecifiedContainer)
+	assert.Equal(t, "containerd", settings.DetectedContainerRuntime)
+	assert.Equal(t, "xyz789", settings.DetectedContainerId)
+}
+
+func TestValidate_ContainerNotFound(t *testing.T) {
+	// Create fake clientset
+	fakeClientset := fake.NewSimpleClientset()
+
+	// Create test pod
+	testPod := &corev1.Pod{
+		ObjectMeta: v1.ObjectMeta{
+			Name:      "test-pod",
+			Namespace: "default",
+		},
+		Spec: corev1.PodSpec{
+			NodeName: "test-node",
+			Containers: []corev1.Container{
+				{Name: "existing-container"},
+			},
+		},
+		Status: corev1.PodStatus{
+			Phase: corev1.PodRunning,
+			ContainerStatuses: []corev1.ContainerStatus{
+				{
+					Name:        "existing-container",
+					ContainerID: "docker://abc123",
+				},
+			},
+		},
+	}
+
+	// Add pod to fake clientset
+	_, err := fakeClientset.CoreV1().Pods("default").Create(context.TODO(), testPod, v1.CreateOptions{})
+	assert.Nil(t, err)
+
+	// Create Ksniff instance with mocked clientset
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	settings.UserSpecifiedPodName = "test-pod"
+	settings.UserSpecifiedContainer = "nonexistent-container" // Container doesn't exist
+	settings.UserSpecifiedPrivilegedMode = true
+
+	ksniff := NewKsniff(settings)
+	ksniff.clientset = fakeClientset
+	ksniff.rawConfig = api.Config{CurrentContext: "test-context"}
+	ksniff.resultingContext = &api.Context{Namespace: "default"}
+	ksniff.restConfig = &rest.Config{}
+
+	// Test Validate
+	err = ksniff.Validate()
+	assert.NotNil(t, err)
+	assert.Contains(t, err.Error(), "couldn't find container")
+}
diff --git a/pkg/config/BUILD.bazel b/pkg/config/BUILD.bazel
new file mode 100644
index 0000000..7b8fd3a
--- /dev/null
+++ b/pkg/config/BUILD.bazel
@@ -0,0 +1,9 @@
+load("@rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "config",
+    srcs = ["settings.go"],
+    importpath = "ksniff/pkg/config",
+    visibility = ["//visibility:public"],
+    deps = ["@io_k8s_cli_runtime//pkg/genericclioptions"],
+)
diff --git a/pkg/service/sniffer/BUILD.bazel b/pkg/service/sniffer/BUILD.bazel
new file mode 100644
index 0000000..6800c25
--- /dev/null
+++ b/pkg/service/sniffer/BUILD.bazel
@@ -0,0 +1,20 @@
+load("@rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "sniffer",
+    srcs = [
+        "privileged_pod_sniffer_service.go",
+        "sniffer_service.go",
+        "static_tcpdump_sniffer_service.go",
+    ],
+    importpath = "ksniff/pkg/service/sniffer",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//kube",
+        "//pkg/config",
+        "//pkg/service/sniffer/runtime",
+        "@com_github_pkg_errors//:errors",
+        "@com_github_sirupsen_logrus//:logrus",
+        "@io_k8s_api//core/v1:core",
+    ],
+)
diff --git a/pkg/service/sniffer/runtime/BUILD.bazel b/pkg/service/sniffer/runtime/BUILD.bazel
new file mode 100644
index 0000000..7be08fc
--- /dev/null
+++ b/pkg/service/sniffer/runtime/BUILD.bazel
@@ -0,0 +1,29 @@
+load("@rules_go//go:def.bzl", "go_library", "go_test")
+
+go_library(
+    name = "runtime",
+    srcs = [
+        "containerd.go",
+        "crio.go",
+        "docker.go",
+        "runtime.go",
+    ],
+    importpath = "ksniff/pkg/service/sniffer/runtime",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//utils",
+        "@com_github_pkg_errors//:errors",
+        "@com_github_sirupsen_logrus//:logrus",
+    ],
+)
+
+go_test(
+    name = "runtime_test",
+    srcs = [
+        "crio_test.go",
+        "docker_test.go",
+        "runtime_test.go",
+    ],
+    embed = [":runtime"],
+    deps = ["@com_github_stretchr_testify//assert"],
+)
diff --git a/pkg/service/sniffer/runtime/runtime_test.go b/pkg/service/sniffer/runtime/runtime_test.go
index e3cd75b..c8b1269 100644
--- a/pkg/service/sniffer/runtime/runtime_test.go
+++ b/pkg/service/sniffer/runtime/runtime_test.go
@@ -16,6 +16,269 @@ func TestNewContainerRuntimeBridge_Crio(t *testing.T) {
 	assert.IsType(t, &CrioBridge{}, bridge)
 }
 
+func TestNewContainerRuntimeBridge_Containerd(t *testing.T) {
+	bridge := NewContainerRuntimeBridge("containerd")
+	assert.IsType(t, &ContainerdBridge{}, bridge)
+}
+
 func TestNewContainerRuntimeBridge_Invalid(t *testing.T) {
 	assert.Panics(t, func() { NewContainerRuntimeBridge("i-do-not-exist") })
 }
+
+// Docker Bridge Tests
+func TestDockerBridge_NeedsPid(t *testing.T) {
+	bridge := NewDockerBridge()
+	assert.False(t, bridge.NeedsPid())
+}
+
+func TestDockerBridge_GetDefaultImage(t *testing.T) {
+	bridge := NewDockerBridge()
+	assert.Equal(t, "docker", bridge.GetDefaultImage())
+}
+
+func TestDockerBridge_GetDefaultTCPImage(t *testing.T) {
+	bridge := NewDockerBridge()
+	assert.Equal(t, "maintained/tcpdump", bridge.GetDefaultTCPImage())
+}
+
+func TestDockerBridge_GetDefaultSocketPath(t *testing.T) {
+	bridge := NewDockerBridge()
+	assert.Equal(t, "/var/run/docker.sock", bridge.GetDefaultSocketPath())
+}
+
+func TestDockerBridge_BuildInspectCommand_Panics(t *testing.T) {
+	bridge := NewDockerBridge()
+	assert.Panics(t, func() { bridge.BuildInspectCommand("test-container") })
+}
+
+func TestDockerBridge_ExtractPid_Panics(t *testing.T) {
+	bridge := NewDockerBridge()
+	assert.Panics(t, func() { bridge.ExtractPid("test-inspection") })
+}
+
+func TestDockerBridge_BuildTcpdumpCommand(t *testing.T) {
+	bridge := NewDockerBridge()
+	containerId := "test-container-id"
+	netInterface := "eth0"
+	filter := "port 80"
+	socketPath := "/var/run/docker.sock"
+	tcpdumpImage := "maintained/tcpdump"
+
+	command := bridge.BuildTcpdumpCommand(&containerId, netInterface, filter, nil, socketPath, tcpdumpImage)
+
+	assert.NotNil(t, command)
+	assert.Contains(t, command, "docker")
+	assert.Contains(t, command, "--host")
+	assert.Contains(t, command, "unix:///var/run/docker.sock")
+	assert.Contains(t, command, "run")
+	assert.Contains(t, command, "--rm")
+	assert.Contains(t, command, "--net=container:test-container-id")
+	assert.Contains(t, command, tcpdumpImage)
+	assert.Contains(t, command, "-i")
+	assert.Contains(t, command, netInterface)
+	assert.Contains(t, command, filter)
+}
+
+func TestDockerBridge_BuildCleanupCommand(t *testing.T) {
+	bridge := NewDockerBridge()
+	containerId := "test-container-id"
+	socketPath := "/var/run/docker.sock"
+
+	// First build tcpdump command to initialize cleanup command
+	bridge.BuildTcpdumpCommand(&containerId, "eth0", "port 80", nil, socketPath, "maintained/tcpdump")
+
+	cleanupCommand := bridge.BuildCleanupCommand()
+
+	assert.NotNil(t, cleanupCommand)
+	assert.Contains(t, cleanupCommand, "docker")
+	assert.Contains(t, cleanupCommand, "--host")
+	assert.Contains(t, cleanupCommand, "unix:///var/run/docker.sock")
+	assert.Contains(t, cleanupCommand, "rm")
+	assert.Contains(t, cleanupCommand, "-f")
+}
+
+// CRI-O Bridge Tests
+func TestCrioBridge_NeedsPid(t *testing.T) {
+	bridge := NewCrioBridge()
+	assert.True(t, bridge.NeedsPid())
+}
+
+func TestCrioBridge_GetDefaultImage(t *testing.T) {
+	bridge := NewCrioBridge()
+	assert.Equal(t, "maintained/tcpdump", bridge.GetDefaultImage())
+}
+
+func TestCrioBridge_GetDefaultTCPImage(t *testing.T) {
+	bridge := NewCrioBridge()
+	assert.Equal(t, "", bridge.GetDefaultTCPImage())
+}
+
+func TestCrioBridge_GetDefaultSocketPath(t *testing.T) {
+	bridge := NewCrioBridge()
+	assert.Equal(t, "/var/run/crio/crio.sock", bridge.GetDefaultSocketPath())
+}
+
+func TestCrioBridge_BuildInspectCommand(t *testing.T) {
+	bridge := NewCrioBridge()
+	containerId := "test-container-id"
+
+	command := bridge.BuildInspectCommand(containerId)
+
+	assert.NotNil(t, command)
+	assert.Equal(t, []string{"chroot", "/host", "crictl", "inspect", "--output", "json", containerId}, command)
+}
+
+func TestCrioBridge_ExtractPid_Crio117(t *testing.T) {
+	bridge := NewCrioBridge()
+	inspection := `{"pid": 12345}`
+
+	pid, err := bridge.ExtractPid(inspection)
+
+	assert.Nil(t, err)
+	assert.NotNil(t, pid)
+	assert.Equal(t, "12345", *pid)
+}
+
+func TestCrioBridge_ExtractPid_Crio118(t *testing.T) {
+	bridge := NewCrioBridge()
+	inspection := `{"info": {"pid": 67890}}`
+
+	pid, err := bridge.ExtractPid(inspection)
+
+	assert.Nil(t, err)
+	assert.NotNil(t, pid)
+	assert.Equal(t, "67890", *pid)
+}
+
+func TestCrioBridge_ExtractPid_InvalidJSON(t *testing.T) {
+	bridge := NewCrioBridge()
+	inspection := `invalid json`
+
+	pid, err := bridge.ExtractPid(inspection)
+
+	assert.NotNil(t, err)
+	assert.Nil(t, pid)
+}
+
+func TestCrioBridge_ExtractPid_UnknownVersion(t *testing.T) {
+	bridge := NewCrioBridge()
+	inspection := `{"unknown": "field"}`
+
+	pid, err := bridge.ExtractPid(inspection)
+
+	assert.NotNil(t, err)
+	assert.Nil(t, pid)
+	assert.Contains(t, err.Error(), "unable to identify CRI-O version")
+}
+
+func TestCrioBridge_ExtractPid_Crio117_InvalidPid(t *testing.T) {
+	bridge := NewCrioBridge()
+	inspection := `{"pid": "not-a-number"}`
+
+	pid, err := bridge.ExtractPid(inspection)
+
+	assert.NotNil(t, err)
+	assert.Nil(t, pid)
+}
+
+func TestCrioBridge_ExtractPid_Crio118_InvalidInfo(t *testing.T) {
+	bridge := NewCrioBridge()
+	inspection := `{"info": "not-an-object"}`
+
+	pid, err := bridge.ExtractPid(inspection)
+
+	assert.NotNil(t, err)
+	assert.Nil(t, pid)
+}
+
+func TestCrioBridge_BuildTcpdumpCommand(t *testing.T) {
+	bridge := NewCrioBridge()
+	containerId := "test-container-id"
+	netInterface := "eth0"
+	filter := "port 80"
+	pid := "12345"
+
+	command := bridge.BuildTcpdumpCommand(&containerId, netInterface, filter, &pid, "", "")
+
+	assert.NotNil(t, command)
+	assert.Equal(t, []string{"nsenter", "-n", "-t", "12345", "--", "tcpdump", "-i", "eth0", "-U", "-w", "-", "port 80"}, command)
+}
+
+func TestCrioBridge_BuildCleanupCommand(t *testing.T) {
+	bridge := NewCrioBridge()
+
+	cleanupCommand := bridge.BuildCleanupCommand()
+
+	assert.Nil(t, cleanupCommand)
+}
+
+// Containerd Bridge Tests
+func TestContainerdBridge_NeedsPid(t *testing.T) {
+	bridge := NewContainerdBridge()
+	assert.False(t, bridge.NeedsPid())
+}
+
+func TestContainerdBridge_GetDefaultImage(t *testing.T) {
+	bridge := NewContainerdBridge()
+	assert.Equal(t, "docker.io/hamravesh/ksniff-helper:v3", bridge.GetDefaultImage())
+}
+
+func TestContainerdBridge_GetDefaultTCPImage(t *testing.T) {
+	bridge := NewContainerdBridge()
+	assert.Equal(t, "docker.io/maintained/tcpdump:latest", bridge.GetDefaultTCPImage())
+}
+
+func TestContainerdBridge_GetDefaultSocketPath(t *testing.T) {
+	bridge := NewContainerdBridge()
+	assert.Equal(t, "/run/containerd/containerd.sock", bridge.GetDefaultSocketPath())
+}
+
+func TestContainerdBridge_BuildInspectCommand_Panics(t *testing.T) {
+	bridge := NewContainerdBridge()
+	assert.Panics(t, func() { bridge.BuildInspectCommand("test-container") })
+}
+
+func TestContainerdBridge_ExtractPid_Panics(t *testing.T) {
+	bridge := NewContainerdBridge()
+	assert.Panics(t, func() { bridge.ExtractPid("test-inspection") })
+}
+
+func TestContainerdBridge_BuildTcpdumpCommand(t *testing.T) {
+	bridge := NewContainerdBridge()
+	containerId := "test-container-id"
+	netInterface := "eth0"
+	filter := "port 80"
+	socketPath := "/run/containerd/containerd.sock"
+	tcpdumpImage := "docker.io/maintained/tcpdump:latest"
+
+	command := bridge.BuildTcpdumpCommand(&containerId, netInterface, filter, nil, socketPath, tcpdumpImage)
+
+	assert.NotNil(t, command)
+	assert.Equal(t, 3, len(command))
+	assert.Equal(t, "/bin/sh", command[0])
+	assert.Equal(t, "-c", command[1])
+	assert.Contains(t, command[2], "crictl pull")
+	assert.Contains(t, command[2], tcpdumpImage)
+	assert.Contains(t, command[2], containerId)
+	assert.Contains(t, command[2], socketPath)
+	assert.Contains(t, command[2], "tcpdump -i eth0 -U -w - port 80")
+}
+
+func TestContainerdBridge_BuildCleanupCommand(t *testing.T) {
+	bridge := NewContainerdBridge()
+	containerId := "test-container-id"
+	socketPath := "/run/containerd/containerd.sock"
+
+	// First build tcpdump command to initialize internal state
+	bridge.BuildTcpdumpCommand(&containerId, "eth0", "port 80", nil, socketPath, "docker.io/maintained/tcpdump:latest")
+
+	cleanupCommand := bridge.BuildCleanupCommand()
+
+	assert.NotNil(t, cleanupCommand)
+	assert.Equal(t, 3, len(cleanupCommand))
+	assert.Equal(t, "/bin/sh", cleanupCommand[0])
+	assert.Equal(t, "-c", cleanupCommand[1])
+	assert.Contains(t, cleanupCommand[2], "ctr -a")
+	assert.Contains(t, cleanupCommand[2], socketPath)
+	assert.Contains(t, cleanupCommand[2], "task kill -s SIGKILL")
+}
diff --git a/tcpdump.BUILD b/tcpdump.BUILD
new file mode 100644
index 0000000..7d6cb73
--- /dev/null
+++ b/tcpdump.BUILD
@@ -0,0 +1,49 @@
+filegroup(
+    name = "all_srcs",
+    srcs = glob(["**"]),
+    visibility = ["//visibility:public"],
+)
+
+# Build tcpdump using a genrule
+# Note: This is designed to build a static binary on Linux.
+# On macOS, this may not work due to limitations with static linking and configure script compatibility.
+# For production use on Linux, this will create a statically-linked tcpdump binary.
+genrule(
+    name = "tcpdump",
+    srcs = [":all_srcs"],
+    outs = ["tcpdump_bin"],
+    cmd = select({
+        "@platforms//os:linux": """
+            set -e
+            # Create a temporary build directory
+            BUILD_DIR=$$(mktemp -d)
+            trap "rm -rf $$BUILD_DIR" EXIT
+
+            # Copy all sources to build directory
+            SRC_DIR=$$(dirname $$(echo $(SRCS) | cut -d' ' -f1))
+            cp -r $$SRC_DIR/* $$BUILD_DIR/
+            cd $$BUILD_DIR
+
+            # Configure and build with static linking
+            CFLAGS=-static ./configure --without-crypto
+            make
+
+            # Copy the binary to the output
+            cp tcpdump $(location tcpdump_bin)
+        """,
+        "//conditions:default": """
+            # On non-Linux platforms, create a placeholder script
+            # that explains how to build static-tcpdump
+            cat > $(location tcpdump_bin) << 'EOF'
+#!/bin/bash
+echo "Error: static-tcpdump must be built on Linux"
+echo "To build static-tcpdump:"
+echo "  1. Run this build on a Linux machine or in a Linux container"
+echo "  2. Or use the Makefile target: make static-tcpdump"
+exit 1
+EOF
+            chmod +x $(location tcpdump_bin)
+        """,
+    }),
+    visibility = ["//visibility:public"],
+)
diff --git a/utils/BUILD.bazel b/utils/BUILD.bazel
new file mode 100644
index 0000000..59c7140
--- /dev/null
+++ b/utils/BUILD.bazel
@@ -0,0 +1,15 @@
+load("@rules_go//go:def.bzl", "go_library", "go_test")
+
+go_library(
+    name = "utils",
+    srcs = ["utils.go"],
+    importpath = "ksniff/utils",
+    visibility = ["//visibility:public"],
+)
+
+go_test(
+    name = "utils_test",
+    srcs = ["utils_test.go"],
+    embed = [":utils"],
+    deps = ["@com_github_stretchr_testify//assert"],
+)

From 764840529fdfc5191227ee5066dfa313071aadc9 Mon Sep 17 00:00:00 2001
From: Matt Long <mtl@cisco.com>
Date: Fri, 23 Jan 2026 11:59:17 +0100
Subject: [PATCH 2/5] Update to bazel and add tests

---
 .gitignore                                    |    1 +
 .../omnicate-ksniff/pkg/cmd/index.html        |   98 --
 .../pkg/cmd/sniff.go.gcov.html                |  563 ---------
 .../omnicate-ksniff/utils/index.html          |   98 --
 .../omnicate-ksniff/utils/utils.go.gcov.html  |  128 --
 coverage_html/amber.png                       |  Bin 141 -> 0 bytes
 coverage_html/cmd_line                        |    1 -
 coverage_html/emerald.png                     |  Bin 141 -> 0 bytes
 coverage_html/gcov.css                        | 1125 -----------------
 coverage_html/glass.png                       |  Bin 167 -> 0 bytes
 coverage_html/index-sort-f.html               |  116 --
 coverage_html/index-sort-l.html               |  116 --
 coverage_html/index.html                      |  116 --
 coverage_html/ruby.png                        |  Bin 141 -> 0 bytes
 coverage_html/runtime/containerd.go.gcov.html |  145 ---
 coverage_html/runtime/crio.go.gcov.html       |  169 ---
 coverage_html/runtime/docker.go.gcov.html     |  135 --
 coverage_html/runtime/index-sort-f.html       |  125 --
 coverage_html/runtime/index-sort-l.html       |  125 --
 coverage_html/runtime/index.html              |  125 --
 coverage_html/runtime/runtime.go.gcov.html    |  109 --
 coverage_html/snow.png                        |  Bin 141 -> 0 bytes
 coverage_html/updown.png                      |  Bin 117 -> 0 bytes
 23 files changed, 1 insertion(+), 3294 deletions(-)
 delete mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html
 delete mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html
 delete mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html
 delete mode 100644 coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html
 delete mode 100644 coverage_html/amber.png
 delete mode 100644 coverage_html/cmd_line
 delete mode 100644 coverage_html/emerald.png
 delete mode 100644 coverage_html/gcov.css
 delete mode 100644 coverage_html/glass.png
 delete mode 100644 coverage_html/index-sort-f.html
 delete mode 100644 coverage_html/index-sort-l.html
 delete mode 100644 coverage_html/index.html
 delete mode 100644 coverage_html/ruby.png
 delete mode 100644 coverage_html/runtime/containerd.go.gcov.html
 delete mode 100644 coverage_html/runtime/crio.go.gcov.html
 delete mode 100644 coverage_html/runtime/docker.go.gcov.html
 delete mode 100644 coverage_html/runtime/index-sort-f.html
 delete mode 100644 coverage_html/runtime/index-sort-l.html
 delete mode 100644 coverage_html/runtime/index.html
 delete mode 100644 coverage_html/runtime/runtime.go.gcov.html
 delete mode 100644 coverage_html/snow.png
 delete mode 100644 coverage_html/updown.png

diff --git a/.gitignore b/.gitignore
index 54162a8..3b8743e 100644
--- a/.gitignore
+++ b/.gitignore
@@ -8,6 +8,7 @@
 
 # Build and test process
 .coverage
+coverage_html
 
 # bzlmod lockfile which is useless:
 # "Importantly, it only includes dependencies that are included in the current invocation of the build"
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html
deleted file mode 100644
index de097d2..0000000
--- a/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html
+++ /dev/null
@@ -1,98 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/pkg/cmd</title>
-  <link rel="stylesheet" type="text/css" href="../../../../../../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../../../../../../index.html" title="Click to go to top-level">top level</a> - /Users/mtl/Development/omnicate-ksniff/pkg/cmd</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryLo">52.4&nbsp;%</td>
-            <td class="headerCovTableEntry">349</td>
-            <td class="headerCovTableEntry">183</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><img src="../../../../../../glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="../../../../../../glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="sniff.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go">sniff.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../../../../../ruby.png" width=52 height=10 alt="52.4%"><img src="../../../../../../snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
-              </td>
-              <td class="coverPerLo">52.4&nbsp;%</td>
-              <td class="coverNumDflt">349</td>
-              <td class="coverNumDflt">183</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html
deleted file mode 100644
index 52058a8..0000000
--- a/coverage_html/Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go.gcov.html
+++ /dev/null
@@ -1,563 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/pkg/cmd/sniff.go</title>
-  <link rel="stylesheet" type="text/css" href="../../../../../../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../../../../../../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd</a> - sniff.go</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryLo">52.4&nbsp;%</td>
-            <td class="headerCovTableEntry">349</td>
-            <td class="headerCovTableEntry">183</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <table cellpadding=0 cellspacing=0 border=0>
-            <tr>
-              <td><br></td>
-            </tr>
-            <tr>
-              <td>
-<pre class="sourceHeading">            Line data    Source code</pre>
-<pre class="source">
-<span id="L1"><span class="lineNum">       1</span>              : package cmd</span>
-<span id="L2"><span class="lineNum">       2</span>              : </span>
-<span id="L3"><span class="lineNum">       3</span>              : import (</span>
-<span id="L4"><span class="lineNum">       4</span>              :         &quot;context&quot;</span>
-<span id="L5"><span class="lineNum">       5</span>              :         &quot;fmt&quot;</span>
-<span id="L6"><span class="lineNum">       6</span>              :         &quot;io&quot;</span>
-<span id="L7"><span class="lineNum">       7</span>              :         &quot;os&quot;</span>
-<span id="L8"><span class="lineNum">       8</span>              :         &quot;os/exec&quot;</span>
-<span id="L9"><span class="lineNum">       9</span>              :         &quot;os/signal&quot;</span>
-<span id="L10"><span class="lineNum">      10</span>              :         &quot;path/filepath&quot;</span>
-<span id="L11"><span class="lineNum">      11</span>              :         &quot;strings&quot;</span>
-<span id="L12"><span class="lineNum">      12</span>              :         &quot;syscall&quot;</span>
-<span id="L13"><span class="lineNum">      13</span>              :         &quot;time&quot;</span>
-<span id="L14"><span class="lineNum">      14</span>              : </span>
-<span id="L15"><span class="lineNum">      15</span>              :         &quot;ksniff/kube&quot;</span>
-<span id="L16"><span class="lineNum">      16</span>              :         &quot;ksniff/pkg/config&quot;</span>
-<span id="L17"><span class="lineNum">      17</span>              :         &quot;ksniff/pkg/service/sniffer&quot;</span>
-<span id="L18"><span class="lineNum">      18</span>              :         &quot;ksniff/pkg/service/sniffer/runtime&quot;</span>
-<span id="L19"><span class="lineNum">      19</span>              : </span>
-<span id="L20"><span class="lineNum">      20</span>              :         &quot;github.com/mitchellh/go-homedir&quot;</span>
-<span id="L21"><span class="lineNum">      21</span>              :         &quot;github.com/pkg/errors&quot;</span>
-<span id="L22"><span class="lineNum">      22</span>              :         log &quot;github.com/sirupsen/logrus&quot;</span>
-<span id="L23"><span class="lineNum">      23</span>              :         &quot;github.com/spf13/cobra&quot;</span>
-<span id="L24"><span class="lineNum">      24</span>              :         &quot;github.com/spf13/viper&quot;</span>
-<span id="L25"><span class="lineNum">      25</span>              :         corev1 &quot;k8s.io/api/core/v1&quot;</span>
-<span id="L26"><span class="lineNum">      26</span>              :         v1 &quot;k8s.io/apimachinery/pkg/apis/meta/v1&quot;</span>
-<span id="L27"><span class="lineNum">      27</span>              :         &quot;k8s.io/cli-runtime/pkg/genericclioptions&quot;</span>
-<span id="L28"><span class="lineNum">      28</span>              :         &quot;k8s.io/client-go/kubernetes&quot;</span>
-<span id="L29"><span class="lineNum">      29</span>              :         &quot;k8s.io/client-go/rest&quot;</span>
-<span id="L30"><span class="lineNum">      30</span>              :         &quot;k8s.io/client-go/tools/clientcmd&quot;</span>
-<span id="L31"><span class="lineNum">      31</span>              :         &quot;k8s.io/client-go/tools/clientcmd/api&quot;</span>
-<span id="L32"><span class="lineNum">      32</span>              : </span>
-<span id="L33"><span class="lineNum">      33</span>              :         _ &quot;k8s.io/client-go/plugin/pkg/client/auth/azure&quot;</span>
-<span id="L34"><span class="lineNum">      34</span>              :         _ &quot;k8s.io/client-go/plugin/pkg/client/auth/gcp&quot;</span>
-<span id="L35"><span class="lineNum">      35</span>              :         _ &quot;k8s.io/client-go/plugin/pkg/client/auth/oidc&quot;</span>
-<span id="L36"><span class="lineNum">      36</span>              : )</span>
-<span id="L37"><span class="lineNum">      37</span>              : </span>
-<span id="L38"><span class="lineNum">      38</span>              : var (</span>
-<span id="L39"><span class="lineNum">      39</span>              :         ksniffExample = &quot;kubectl sniff hello-minikube-7c77b68cff-qbvsd -c hello-minikube&quot;</span>
-<span id="L40"><span class="lineNum">      40</span>              : )</span>
-<span id="L41"><span class="lineNum">      41</span>              : </span>
-<span id="L42"><span class="lineNum">      42</span>              : const minimumNumberOfArguments = 1</span>
-<span id="L43"><span class="lineNum">      43</span>              : const tcpdumpBinaryName = &quot;static-tcpdump&quot;</span>
-<span id="L44"><span class="lineNum">      44</span>              : const tcpdumpRemotePath = &quot;/tmp/static-tcpdump&quot;</span>
-<span id="L45"><span class="lineNum">      45</span>              : </span>
-<span id="L46"><span class="lineNum">      46</span>              : var tcpdumpLocalBinaryPathLookupList []string</span>
-<span id="L47"><span class="lineNum">      47</span>              : </span>
-<span id="L48"><span class="lineNum">      48</span>              : type Ksniff struct {</span>
-<span id="L49"><span class="lineNum">      49</span>              :         configFlags      *genericclioptions.ConfigFlags</span>
-<span id="L50"><span class="lineNum">      50</span>              :         resultingContext *api.Context</span>
-<span id="L51"><span class="lineNum">      51</span>              :         clientset        kubernetes.Interface</span>
-<span id="L52"><span class="lineNum">      52</span>              :         restConfig       *rest.Config</span>
-<span id="L53"><span class="lineNum">      53</span>              :         rawConfig        api.Config</span>
-<span id="L54"><span class="lineNum">      54</span>              :         settings         *config.KsniffSettings</span>
-<span id="L55"><span class="lineNum">      55</span>              :         snifferService   sniffer.SnifferService</span>
-<span id="L56"><span class="lineNum">      56</span>              :         wireshark        *exec.Cmd</span>
-<span id="L57"><span class="lineNum">      57</span>              : }</span>
-<span id="L58"><span class="lineNum">      58</span>              : </span>
-<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">          28 : func NewKsniff(settings *config.KsniffSettings) *Ksniff {</span></span>
-<span id="L60"><span class="lineNum">      60</span> <span class="tlaGNC">          28 :         return &amp;Ksniff{settings: settings, configFlags: genericclioptions.NewConfigFlags(true)}</span></span>
-<span id="L61"><span class="lineNum">      61</span> <span class="tlaGNC">          28 : }</span></span>
-<span id="L62"><span class="lineNum">      62</span>              : </span>
-<span id="L63"><span class="lineNum">      63</span> <span class="tlaGNC">          10 : func NewCmdSniff(streams genericclioptions.IOStreams) *cobra.Command {</span></span>
-<span id="L64"><span class="lineNum">      64</span> <span class="tlaGNC">          10 :         ksniffSettings := config.NewKsniffSettings(streams)</span></span>
-<span id="L65"><span class="lineNum">      65</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L66"><span class="lineNum">      66</span> <span class="tlaGNC">          10 :         ksniff := NewKsniff(ksniffSettings)</span></span>
-<span id="L67"><span class="lineNum">      67</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L68"><span class="lineNum">      68</span> <span class="tlaGNC">          10 :         cmd := &amp;cobra.Command{</span></span>
-<span id="L69"><span class="lineNum">      69</span> <span class="tlaGNC">          10 :                 Use:          &quot;sniff pod [-n namespace] [-c container] [-f filter] [-o output-file] [-l local-tcpdump-path] [-r remote-tcpdump-path]&quot;,</span></span>
-<span id="L70"><span class="lineNum">      70</span> <span class="tlaGNC">          10 :                 Short:        &quot;Perform network sniffing on a container running in a kubernetes cluster.&quot;,</span></span>
-<span id="L71"><span class="lineNum">      71</span> <span class="tlaGNC">          10 :                 Example:      ksniffExample,</span></span>
-<span id="L72"><span class="lineNum">      72</span> <span class="tlaGNC">          10 :                 SilenceUsage: true,</span></span>
-<span id="L73"><span class="lineNum">      73</span> <span class="tlaGNC">          10 :                 RunE: func(c *cobra.Command, args []string) error {</span></span>
-<span id="L74"><span class="lineNum">      74</span> <span class="tlaUNC">           0 :                         if err := ksniff.Complete(c, args); err != nil {</span></span>
-<span id="L75"><span class="lineNum">      75</span> <span class="tlaUNC">           0 :                                 return err</span></span>
-<span id="L76"><span class="lineNum">      76</span> <span class="tlaUNC">           0 :                         }</span></span>
-<span id="L77"><span class="lineNum">      77</span> <span class="tlaUNC">           0 :                         if err := ksniff.Validate(); err != nil {</span></span>
-<span id="L78"><span class="lineNum">      78</span> <span class="tlaUNC">           0 :                                 return err</span></span>
-<span id="L79"><span class="lineNum">      79</span> <span class="tlaUNC">           0 :                         }</span></span>
-<span id="L80"><span class="lineNum">      80</span> <span class="tlaUNC">           0 :                         if err := ksniff.Run(); err != nil {</span></span>
-<span id="L81"><span class="lineNum">      81</span> <span class="tlaUNC">           0 :                                 return err</span></span>
-<span id="L82"><span class="lineNum">      82</span> <span class="tlaUNC">           0 :                         }</span></span>
-<span id="L83"><span class="lineNum">      83</span>              : </span>
-<span id="L84"><span class="lineNum">      84</span> <span class="tlaUNC">           0 :                         return nil</span></span>
-<span id="L85"><span class="lineNum">      85</span>              :                 },</span>
-<span id="L86"><span class="lineNum">      86</span>              :         }</span>
-<span id="L87"><span class="lineNum">      87</span>              : </span>
-<span id="L88"><span class="lineNum">      88</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedNamespace, &quot;namespace&quot;, &quot;n&quot;, &quot;&quot;, &quot;namespace (optional)&quot;)</span></span>
-<span id="L89"><span class="lineNum">      89</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;namespace&quot;, &quot;KUBECTL_PLUGINS_CURRENT_NAMESPACE&quot;)</span></span>
-<span id="L90"><span class="lineNum">      90</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;namespace&quot;, cmd.Flags().Lookup(&quot;namespace&quot;))</span></span>
-<span id="L91"><span class="lineNum">      91</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L92"><span class="lineNum">      92</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedInterface, &quot;interface&quot;, &quot;i&quot;, &quot;any&quot;, &quot;pod interface to packet capture (optional)&quot;)</span></span>
-<span id="L93"><span class="lineNum">      93</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;interface&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_INTERFACE&quot;)</span></span>
-<span id="L94"><span class="lineNum">      94</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;interface&quot;, cmd.Flags().Lookup(&quot;interface&quot;))</span></span>
-<span id="L95"><span class="lineNum">      95</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L96"><span class="lineNum">      96</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedContainer, &quot;container&quot;, &quot;c&quot;, &quot;&quot;, &quot;container (optional)&quot;)</span></span>
-<span id="L97"><span class="lineNum">      97</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;container&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_CONTAINER&quot;)</span></span>
-<span id="L98"><span class="lineNum">      98</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;container&quot;, cmd.Flags().Lookup(&quot;container&quot;))</span></span>
-<span id="L99"><span class="lineNum">      99</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L100"><span class="lineNum">     100</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedFilter, &quot;filter&quot;, &quot;f&quot;, &quot;&quot;, &quot;tcpdump filter (optional)&quot;)</span></span>
-<span id="L101"><span class="lineNum">     101</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;filter&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_FILTER&quot;)</span></span>
-<span id="L102"><span class="lineNum">     102</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;filter&quot;, cmd.Flags().Lookup(&quot;filter&quot;))</span></span>
-<span id="L103"><span class="lineNum">     103</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L104"><span class="lineNum">     104</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedOutputFile, &quot;output-file&quot;, &quot;o&quot;, &quot;&quot;,</span></span>
-<span id="L105"><span class="lineNum">     105</span> <span class="tlaGNC">          10 :                 &quot;output file path, tcpdump output will be redirect to this file instead of wireshark (optional) ('-' stdout)&quot;)</span></span>
-<span id="L106"><span class="lineNum">     106</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;output-file&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_OUTPUT_FILE&quot;)</span></span>
-<span id="L107"><span class="lineNum">     107</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;output-file&quot;, cmd.Flags().Lookup(&quot;output-file&quot;))</span></span>
-<span id="L108"><span class="lineNum">     108</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L109"><span class="lineNum">     109</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedLocalTcpdumpPath, &quot;local-tcpdump-path&quot;, &quot;l&quot;, &quot;&quot;,</span></span>
-<span id="L110"><span class="lineNum">     110</span> <span class="tlaGNC">          10 :                 &quot;local static tcpdump binary path (optional)&quot;)</span></span>
-<span id="L111"><span class="lineNum">     111</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;local-tcpdump-path&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_LOCAL_TCPDUMP_PATH&quot;)</span></span>
-<span id="L112"><span class="lineNum">     112</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;local-tcpdump-path&quot;, cmd.Flags().Lookup(&quot;local-tcpdump-path&quot;))</span></span>
-<span id="L113"><span class="lineNum">     113</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L114"><span class="lineNum">     114</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedRemoteTcpdumpPath, &quot;remote-tcpdump-path&quot;, &quot;r&quot;, tcpdumpRemotePath,</span></span>
-<span id="L115"><span class="lineNum">     115</span> <span class="tlaGNC">          10 :                 &quot;remote static tcpdump binary path (optional)&quot;)</span></span>
-<span id="L116"><span class="lineNum">     116</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;remote-tcpdump-path&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_REMOTE_TCPDUMP_PATH&quot;)</span></span>
-<span id="L117"><span class="lineNum">     117</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;remote-tcpdump-path&quot;, cmd.Flags().Lookup(&quot;remote-tcpdump-path&quot;))</span></span>
-<span id="L118"><span class="lineNum">     118</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L119"><span class="lineNum">     119</span> <span class="tlaGNC">          10 :         cmd.Flags().BoolVarP(&amp;ksniffSettings.UserSpecifiedVerboseMode, &quot;verbose&quot;, &quot;v&quot;, false,</span></span>
-<span id="L120"><span class="lineNum">     120</span> <span class="tlaGNC">          10 :                 &quot;if specified, ksniff output will include debug information (optional)&quot;)</span></span>
-<span id="L121"><span class="lineNum">     121</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;verbose&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_VERBOSE&quot;)</span></span>
-<span id="L122"><span class="lineNum">     122</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;verbose&quot;, cmd.Flags().Lookup(&quot;verbose&quot;))</span></span>
-<span id="L123"><span class="lineNum">     123</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L124"><span class="lineNum">     124</span> <span class="tlaGNC">          10 :         cmd.Flags().BoolVarP(&amp;ksniffSettings.UserSpecifiedPrivilegedMode, &quot;privileged&quot;, &quot;p&quot;, false,</span></span>
-<span id="L125"><span class="lineNum">     125</span> <span class="tlaGNC">          10 :                 &quot;if specified, ksniff will deploy another pod that have privileges to attach target pod network namespace&quot;)</span></span>
-<span id="L126"><span class="lineNum">     126</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;privileged&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_PRIVILEGED&quot;)</span></span>
-<span id="L127"><span class="lineNum">     127</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;privileged&quot;, cmd.Flags().Lookup(&quot;privileged&quot;))</span></span>
-<span id="L128"><span class="lineNum">     128</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L129"><span class="lineNum">     129</span> <span class="tlaGNC">          10 :         cmd.Flags().DurationVarP(&amp;ksniffSettings.UserSpecifiedPodCreateTimeout, &quot;pod-creation-timeout&quot;, &quot;&quot;,</span></span>
-<span id="L130"><span class="lineNum">     130</span> <span class="tlaGNC">          10 :                 1*time.Minute, &quot;the length of time to wait for privileged pod to be created (e.g. 20s, 2m, 1h). &quot;+</span></span>
-<span id="L131"><span class="lineNum">     131</span> <span class="tlaGNC">          10 :                         &quot;A value of zero means the creation never times out.&quot;)</span></span>
-<span id="L132"><span class="lineNum">     132</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L133"><span class="lineNum">     133</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.Image, &quot;image&quot;, &quot;&quot;, &quot;&quot;,</span></span>
-<span id="L134"><span class="lineNum">     134</span> <span class="tlaGNC">          10 :                 &quot;the privileged container image (optional)&quot;)</span></span>
-<span id="L135"><span class="lineNum">     135</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;image&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_IMAGE&quot;)</span></span>
-<span id="L136"><span class="lineNum">     136</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;image&quot;, cmd.Flags().Lookup(&quot;image&quot;))</span></span>
-<span id="L137"><span class="lineNum">     137</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L138"><span class="lineNum">     138</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.TCPDumpImage, &quot;tcpdump-image&quot;, &quot;&quot;, &quot;&quot;,</span></span>
-<span id="L139"><span class="lineNum">     139</span> <span class="tlaGNC">          10 :                 &quot;the tcpdump container image (optional)&quot;)</span></span>
-<span id="L140"><span class="lineNum">     140</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;tcpdump-image&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_TCPDUMP_IMAGE&quot;)</span></span>
-<span id="L141"><span class="lineNum">     141</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;tcpdump-image&quot;, cmd.Flags().Lookup(&quot;tcpdump-image&quot;))</span></span>
-<span id="L142"><span class="lineNum">     142</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L143"><span class="lineNum">     143</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedKubeContext, &quot;context&quot;, &quot;x&quot;, &quot;&quot;,</span></span>
-<span id="L144"><span class="lineNum">     144</span> <span class="tlaGNC">          10 :                 &quot;kubectl context to work on (optional)&quot;)</span></span>
-<span id="L145"><span class="lineNum">     145</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;context&quot;, &quot;KUBECTL_PLUGINS_CURRENT_CONTEXT&quot;)</span></span>
-<span id="L146"><span class="lineNum">     146</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;context&quot;, cmd.Flags().Lookup(&quot;context&quot;))</span></span>
-<span id="L147"><span class="lineNum">     147</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L148"><span class="lineNum">     148</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.SocketPath, &quot;socket&quot;, &quot;&quot;, &quot;&quot;,</span></span>
-<span id="L149"><span class="lineNum">     149</span> <span class="tlaGNC">          10 :                 &quot;the container runtime socket path (optional)&quot;)</span></span>
-<span id="L150"><span class="lineNum">     150</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;socket&quot;, &quot;KUBECTL_PLUGINS_SOCKET_PATH&quot;)</span></span>
-<span id="L151"><span class="lineNum">     151</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;socket&quot;, cmd.Flags().Lookup(&quot;socket&quot;))</span></span>
-<span id="L152"><span class="lineNum">     152</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L153"><span class="lineNum">     153</span> <span class="tlaGNC">          10 :         cmd.Flags().StringVarP(&amp;ksniffSettings.UserSpecifiedServiceAccount, &quot;serviceaccount&quot;, &quot;s&quot;, &quot;&quot;,</span></span>
-<span id="L154"><span class="lineNum">     154</span> <span class="tlaGNC">          10 :                 &quot;the privileged container service account (optional)&quot;)</span></span>
-<span id="L155"><span class="lineNum">     155</span> <span class="tlaGNC">          10 :         _ = viper.BindEnv(&quot;serviceaccount&quot;, &quot;KUBECTL_PLUGINS_LOCAL_FLAG_SERVICE_ACCOUNT&quot;)</span></span>
-<span id="L156"><span class="lineNum">     156</span> <span class="tlaGNC">          10 :         _ = viper.BindPFlag(&quot;serviceaccount&quot;, cmd.Flags().Lookup(&quot;serviceaccount&quot;))</span></span>
-<span id="L157"><span class="lineNum">     157</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L158"><span class="lineNum">     158</span> <span class="tlaGNC">          10 :         return cmd</span></span>
-<span id="L159"><span class="lineNum">     159</span>              : }</span>
-<span id="L160"><span class="lineNum">     160</span>              : </span>
-<span id="L161"><span class="lineNum">     161</span> <span class="tlaGNC">           2 : func (o *Ksniff) Complete(cmd *cobra.Command, args []string) error {</span></span>
-<span id="L162"><span class="lineNum">     162</span> <span class="tlaGNC">           2 :         // Validate and populate basic settings</span></span>
-<span id="L163"><span class="lineNum">     163</span> <span class="tlaGNC">           2 :         if err := o.completeBasicSettings(cmd, args); err != nil {</span></span>
-<span id="L164"><span class="lineNum">     164</span> <span class="tlaGNC">           2 :                 return err</span></span>
-<span id="L165"><span class="lineNum">     165</span> <span class="tlaGNC">           2 :         }</span></span>
-<span id="L166"><span class="lineNum">     166</span>              : </span>
-<span id="L167"><span class="lineNum">     167</span>              :         // Load Kubernetes configuration</span>
-<span id="L168"><span class="lineNum">     168</span> <span class="tlaUNC">           0 :         if err := o.loadKubeConfig(); err != nil {</span></span>
-<span id="L169"><span class="lineNum">     169</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L170"><span class="lineNum">     170</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L171"><span class="lineNum">     171</span>              : </span>
-<span id="L172"><span class="lineNum">     172</span> <span class="tlaUNC">           0 :         return nil</span></span>
-<span id="L173"><span class="lineNum">     173</span>              : }</span>
-<span id="L174"><span class="lineNum">     174</span>              : </span>
-<span id="L175"><span class="lineNum">     175</span>              : // completeBasicSettings validates arguments and populates settings from viper</span>
-<span id="L176"><span class="lineNum">     176</span>              : // This method doesn't require Kubernetes configuration and can be tested independently</span>
-<span id="L177"><span class="lineNum">     177</span> <span class="tlaGNC">          12 : func (o *Ksniff) completeBasicSettings(cmd *cobra.Command, args []string) error {</span></span>
-<span id="L178"><span class="lineNum">     178</span> <span class="tlaGNC">          12 :         if len(args) &lt; minimumNumberOfArguments {</span></span>
-<span id="L179"><span class="lineNum">     179</span> <span class="tlaGNC">           1 :                 _ = cmd.Usage()</span></span>
-<span id="L180"><span class="lineNum">     180</span> <span class="tlaGNC">           1 :                 return errors.New(&quot;not enough arguments&quot;)</span></span>
-<span id="L181"><span class="lineNum">     181</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L182"><span class="lineNum">     182</span>              : </span>
-<span id="L183"><span class="lineNum">     183</span> <span class="tlaGNC">          11 :         o.settings.UserSpecifiedPodName = args[0]</span></span>
-<span id="L184"><span class="lineNum">     184</span> <span class="tlaGNC">          11 :         if o.settings.UserSpecifiedPodName == &quot;&quot; {</span></span>
-<span id="L185"><span class="lineNum">     185</span> <span class="tlaGNC">           1 :                 return errors.New(&quot;pod name is empty&quot;)</span></span>
-<span id="L186"><span class="lineNum">     186</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L187"><span class="lineNum">     187</span>              : </span>
-<span id="L188"><span class="lineNum">     188</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedNamespace = viper.GetString(&quot;namespace&quot;)</span></span>
-<span id="L189"><span class="lineNum">     189</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedContainer = viper.GetString(&quot;container&quot;)</span></span>
-<span id="L190"><span class="lineNum">     190</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedInterface = viper.GetString(&quot;interface&quot;)</span></span>
-<span id="L191"><span class="lineNum">     191</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedFilter = viper.GetString(&quot;filter&quot;)</span></span>
-<span id="L192"><span class="lineNum">     192</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedOutputFile = viper.GetString(&quot;output-file&quot;)</span></span>
-<span id="L193"><span class="lineNum">     193</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedLocalTcpdumpPath = viper.GetString(&quot;local-tcpdump-path&quot;)</span></span>
-<span id="L194"><span class="lineNum">     194</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedRemoteTcpdumpPath = viper.GetString(&quot;remote-tcpdump-path&quot;)</span></span>
-<span id="L195"><span class="lineNum">     195</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedVerboseMode = viper.GetBool(&quot;verbose&quot;)</span></span>
-<span id="L196"><span class="lineNum">     196</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedPrivilegedMode = viper.GetBool(&quot;privileged&quot;)</span></span>
-<span id="L197"><span class="lineNum">     197</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedKubeContext = viper.GetString(&quot;context&quot;)</span></span>
-<span id="L198"><span class="lineNum">     198</span> <span class="tlaGNC">          10 :         o.settings.Image = viper.GetString(&quot;image&quot;)</span></span>
-<span id="L199"><span class="lineNum">     199</span> <span class="tlaGNC">          10 :         o.settings.TCPDumpImage = viper.GetString(&quot;tcpdump-image&quot;)</span></span>
-<span id="L200"><span class="lineNum">     200</span> <span class="tlaGNC">          10 :         o.settings.SocketPath = viper.GetString(&quot;socket&quot;)</span></span>
-<span id="L201"><span class="lineNum">     201</span> <span class="tlaGNC">          10 :         o.settings.UseDefaultImage = !viper.IsSet(&quot;image&quot;)</span></span>
-<span id="L202"><span class="lineNum">     202</span> <span class="tlaGNC">          10 :         o.settings.UseDefaultTCPDumpImage = !viper.IsSet(&quot;tcpdump-image&quot;)</span></span>
-<span id="L203"><span class="lineNum">     203</span> <span class="tlaGNC">          10 :         o.settings.UseDefaultSocketPath = !viper.IsSet(&quot;socket&quot;)</span></span>
-<span id="L204"><span class="lineNum">     204</span> <span class="tlaGNC">          10 :         o.settings.UserSpecifiedServiceAccount = viper.GetString(&quot;serviceaccount&quot;)</span></span>
-<span id="L205"><span class="lineNum">     205</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L206"><span class="lineNum">     206</span> <span class="tlaGNC">          10 :         if o.settings.UserSpecifiedVerboseMode {</span></span>
-<span id="L207"><span class="lineNum">     207</span> <span class="tlaGNC">           1 :                 log.Info(&quot;running in verbose mode&quot;)</span></span>
-<span id="L208"><span class="lineNum">     208</span> <span class="tlaGNC">           1 :                 log.SetLevel(log.DebugLevel)</span></span>
-<span id="L209"><span class="lineNum">     209</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L210"><span class="lineNum">     210</span>              : </span>
-<span id="L211"><span class="lineNum">     211</span> <span class="tlaGNC">          10 :         var err error</span></span>
-<span id="L212"><span class="lineNum">     212</span> <span class="tlaGNC">          10 :         tcpdumpLocalBinaryPathLookupList, err = o.buildTcpdumpBinaryPathLookupList()</span></span>
-<span id="L213"><span class="lineNum">     213</span> <span class="tlaGNC">          10 :         if err != nil {</span></span>
-<span id="L214"><span class="lineNum">     214</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L215"><span class="lineNum">     215</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L216"><span class="lineNum">     216</span>              : </span>
-<span id="L217"><span class="lineNum">     217</span> <span class="tlaGNC">          10 :         return nil</span></span>
-<span id="L218"><span class="lineNum">     218</span>              : }</span>
-<span id="L219"><span class="lineNum">     219</span>              : </span>
-<span id="L220"><span class="lineNum">     220</span>              : // loadKubeConfig loads the Kubernetes configuration and initializes the clientset</span>
-<span id="L221"><span class="lineNum">     221</span>              : // This method is separated to allow for easier testing and mocking</span>
-<span id="L222"><span class="lineNum">     222</span> <span class="tlaUNC">           0 : func (o *Ksniff) loadKubeConfig() error {</span></span>
-<span id="L223"><span class="lineNum">     223</span> <span class="tlaUNC">           0 :         var err error</span></span>
-<span id="L224"><span class="lineNum">     224</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L225"><span class="lineNum">     225</span> <span class="tlaUNC">           0 :         o.rawConfig, err = o.configFlags.ToRawKubeConfigLoader().RawConfig()</span></span>
-<span id="L226"><span class="lineNum">     226</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
-<span id="L227"><span class="lineNum">     227</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L228"><span class="lineNum">     228</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L229"><span class="lineNum">     229</span>              : </span>
-<span id="L230"><span class="lineNum">     230</span> <span class="tlaUNC">           0 :         var currentContext *api.Context</span></span>
-<span id="L231"><span class="lineNum">     231</span> <span class="tlaUNC">           0 :         var exists bool</span></span>
-<span id="L232"><span class="lineNum">     232</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L233"><span class="lineNum">     233</span> <span class="tlaUNC">           0 :         if o.settings.UserSpecifiedKubeContext != &quot;&quot; {</span></span>
-<span id="L234"><span class="lineNum">     234</span> <span class="tlaUNC">           0 :                 currentContext, exists = o.rawConfig.Contexts[o.settings.UserSpecifiedKubeContext]</span></span>
-<span id="L235"><span class="lineNum">     235</span> <span class="tlaUNC">           0 :         } else {</span></span>
-<span id="L236"><span class="lineNum">     236</span> <span class="tlaUNC">           0 :                 currentContext, exists = o.rawConfig.Contexts[o.rawConfig.CurrentContext]</span></span>
-<span id="L237"><span class="lineNum">     237</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L238"><span class="lineNum">     238</span>              : </span>
-<span id="L239"><span class="lineNum">     239</span> <span class="tlaUNC">           0 :         if !exists {</span></span>
-<span id="L240"><span class="lineNum">     240</span> <span class="tlaUNC">           0 :                 return errors.New(&quot;context doesn't exist&quot;)</span></span>
-<span id="L241"><span class="lineNum">     241</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L242"><span class="lineNum">     242</span>              : </span>
-<span id="L243"><span class="lineNum">     243</span> <span class="tlaUNC">           0 :         loadingRules := clientcmd.NewDefaultClientConfigLoadingRules()</span></span>
-<span id="L244"><span class="lineNum">     244</span> <span class="tlaUNC">           0 :         configOverrides := &amp;clientcmd.ConfigOverrides{</span></span>
-<span id="L245"><span class="lineNum">     245</span> <span class="tlaUNC">           0 :                 CurrentContext: o.settings.UserSpecifiedKubeContext,</span></span>
-<span id="L246"><span class="lineNum">     246</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L247"><span class="lineNum">     247</span> <span class="tlaUNC">           0 :         kubeConfig := clientcmd.NewNonInteractiveDeferredLoadingClientConfig(loadingRules, configOverrides)</span></span>
-<span id="L248"><span class="lineNum">     248</span> <span class="tlaUNC">           0 :         o.restConfig, err = kubeConfig.ClientConfig()</span></span>
-<span id="L249"><span class="lineNum">     249</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
-<span id="L250"><span class="lineNum">     250</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L251"><span class="lineNum">     251</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L252"><span class="lineNum">     252</span>              : </span>
-<span id="L253"><span class="lineNum">     253</span> <span class="tlaUNC">           0 :         o.restConfig.Timeout = 30 * time.Second</span></span>
-<span id="L254"><span class="lineNum">     254</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L255"><span class="lineNum">     255</span> <span class="tlaUNC">           0 :         o.clientset, err = kubernetes.NewForConfig(o.restConfig)</span></span>
-<span id="L256"><span class="lineNum">     256</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
-<span id="L257"><span class="lineNum">     257</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L258"><span class="lineNum">     258</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L259"><span class="lineNum">     259</span>              : </span>
-<span id="L260"><span class="lineNum">     260</span> <span class="tlaUNC">           0 :         o.resultingContext = currentContext.DeepCopy()</span></span>
-<span id="L261"><span class="lineNum">     261</span> <span class="tlaUNC">           0 :         if o.settings.UserSpecifiedNamespace != &quot;&quot; {</span></span>
-<span id="L262"><span class="lineNum">     262</span> <span class="tlaUNC">           0 :                 o.resultingContext.Namespace = o.settings.UserSpecifiedNamespace</span></span>
-<span id="L263"><span class="lineNum">     263</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L264"><span class="lineNum">     264</span>              : </span>
-<span id="L265"><span class="lineNum">     265</span> <span class="tlaUNC">           0 :         return nil</span></span>
-<span id="L266"><span class="lineNum">     266</span>              : }</span>
-<span id="L267"><span class="lineNum">     267</span>              : </span>
-<span id="L268"><span class="lineNum">     268</span> <span class="tlaGNC">          10 : func (o *Ksniff) buildTcpdumpBinaryPathLookupList() ([]string, error) {</span></span>
-<span id="L269"><span class="lineNum">     269</span> <span class="tlaGNC">          10 :         userHomeDir, err := homedir.Dir()</span></span>
-<span id="L270"><span class="lineNum">     270</span> <span class="tlaGNC">          10 :         if err != nil {</span></span>
-<span id="L271"><span class="lineNum">     271</span> <span class="tlaUNC">           0 :                 return nil, err</span></span>
-<span id="L272"><span class="lineNum">     272</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L273"><span class="lineNum">     273</span>              : </span>
-<span id="L274"><span class="lineNum">     274</span> <span class="tlaGNC">          10 :         ksniffBinaryPath, err := filepath.EvalSymlinks(os.Args[0])</span></span>
-<span id="L275"><span class="lineNum">     275</span> <span class="tlaGNC">          10 :         if err != nil {</span></span>
-<span id="L276"><span class="lineNum">     276</span> <span class="tlaUNC">           0 :                 return nil, err</span></span>
-<span id="L277"><span class="lineNum">     277</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L278"><span class="lineNum">     278</span>              : </span>
-<span id="L279"><span class="lineNum">     279</span> <span class="tlaGNC">          10 :         ksniffBinaryDir := filepath.Dir(ksniffBinaryPath)</span></span>
-<span id="L280"><span class="lineNum">     280</span> <span class="tlaGNC">          10 :         ksniffBinaryPath = filepath.Join(ksniffBinaryDir, tcpdumpBinaryName)</span></span>
-<span id="L281"><span class="lineNum">     281</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L282"><span class="lineNum">     282</span> <span class="tlaGNC">          10 :         kubeKsniffPluginFolder := filepath.Join(userHomeDir, filepath.FromSlash(&quot;/.kube/plugin/sniff/&quot;), tcpdumpBinaryName)</span></span>
-<span id="L283"><span class="lineNum">     283</span> <span class="tlaGNC">          10 : </span></span>
-<span id="L284"><span class="lineNum">     284</span> <span class="tlaGNC">          10 :         return append([]string{o.settings.UserSpecifiedLocalTcpdumpPath, ksniffBinaryPath},</span></span>
-<span id="L285"><span class="lineNum">     285</span> <span class="tlaGNC">          10 :                 filepath.Join(&quot;/usr/local/bin/&quot;, tcpdumpBinaryName), kubeKsniffPluginFolder), nil</span></span>
-<span id="L286"><span class="lineNum">     286</span>              : }</span>
-<span id="L287"><span class="lineNum">     287</span>              : </span>
-<span id="L288"><span class="lineNum">     288</span> <span class="tlaGNC">           6 : func (o *Ksniff) Validate() error {</span></span>
-<span id="L289"><span class="lineNum">     289</span> <span class="tlaGNC">           6 :         if len(o.rawConfig.CurrentContext) == 0 {</span></span>
-<span id="L290"><span class="lineNum">     290</span> <span class="tlaUNC">           0 :                 return errors.New(&quot;context doesn't exist&quot;)</span></span>
-<span id="L291"><span class="lineNum">     291</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L292"><span class="lineNum">     292</span>              : </span>
-<span id="L293"><span class="lineNum">     293</span> <span class="tlaGNC">           6 :         if o.resultingContext.Namespace == &quot;&quot; {</span></span>
-<span id="L294"><span class="lineNum">     294</span> <span class="tlaUNC">           0 :                 return errors.New(&quot;namespace value is empty should be custom or default&quot;)</span></span>
-<span id="L295"><span class="lineNum">     295</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L296"><span class="lineNum">     296</span>              : </span>
-<span id="L297"><span class="lineNum">     297</span> <span class="tlaGNC">           6 :         var err error</span></span>
-<span id="L298"><span class="lineNum">     298</span> <span class="tlaGNC">           6 : </span></span>
-<span id="L299"><span class="lineNum">     299</span> <span class="tlaGNC">           6 :         if !o.settings.UserSpecifiedPrivilegedMode {</span></span>
-<span id="L300"><span class="lineNum">     300</span> <span class="tlaUNC">           0 :                 o.settings.UserSpecifiedLocalTcpdumpPath, err = findLocalTcpdumpBinaryPath()</span></span>
-<span id="L301"><span class="lineNum">     301</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
-<span id="L302"><span class="lineNum">     302</span> <span class="tlaUNC">           0 :                         return err</span></span>
-<span id="L303"><span class="lineNum">     303</span> <span class="tlaUNC">           0 :                 }</span></span>
-<span id="L304"><span class="lineNum">     304</span>              : </span>
-<span id="L305"><span class="lineNum">     305</span> <span class="tlaUNC">           0 :                 log.Infof(&quot;using tcpdump path at: '%s'&quot;, o.settings.UserSpecifiedLocalTcpdumpPath)</span></span>
-<span id="L306"><span class="lineNum">     306</span> <span class="tlaGNC">           6 :         } else if o.settings.UserSpecifiedServiceAccount != &quot;&quot; {</span></span>
-<span id="L307"><span class="lineNum">     307</span> <span class="tlaUNC">           0 :                 _, err := o.clientset.CoreV1().ServiceAccounts(o.resultingContext.Namespace).Get(context.TODO(), o.settings.UserSpecifiedServiceAccount, v1.GetOptions{})</span></span>
-<span id="L308"><span class="lineNum">     308</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
-<span id="L309"><span class="lineNum">     309</span> <span class="tlaUNC">           0 :                         return err</span></span>
-<span id="L310"><span class="lineNum">     310</span> <span class="tlaUNC">           0 :                 }</span></span>
-<span id="L311"><span class="lineNum">     311</span>              :         }</span>
-<span id="L312"><span class="lineNum">     312</span>              : </span>
-<span id="L313"><span class="lineNum">     313</span> <span class="tlaGNC">           6 :         pod, err := o.clientset.CoreV1().Pods(o.resultingContext.Namespace).Get(context.TODO(), o.settings.UserSpecifiedPodName, v1.GetOptions{})</span></span>
-<span id="L314"><span class="lineNum">     314</span> <span class="tlaGNC">           6 :         if err != nil {</span></span>
-<span id="L315"><span class="lineNum">     315</span> <span class="tlaGNC">           1 :                 return err</span></span>
-<span id="L316"><span class="lineNum">     316</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L317"><span class="lineNum">     317</span>              : </span>
-<span id="L318"><span class="lineNum">     318</span> <span class="tlaGNC">           5 :         if pod.Status.Phase == corev1.PodSucceeded || pod.Status.Phase == corev1.PodFailed {</span></span>
-<span id="L319"><span class="lineNum">     319</span> <span class="tlaGNC">           1 :                 return errors.Errorf(&quot;cannot sniff on a container in a completed pod; current phase is %s&quot;, pod.Status.Phase)</span></span>
-<span id="L320"><span class="lineNum">     320</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L321"><span class="lineNum">     321</span>              : </span>
-<span id="L322"><span class="lineNum">     322</span> <span class="tlaGNC">           4 :         o.settings.DetectedPodNodeName = pod.Spec.NodeName</span></span>
-<span id="L323"><span class="lineNum">     323</span> <span class="tlaGNC">           4 : </span></span>
-<span id="L324"><span class="lineNum">     324</span> <span class="tlaGNC">           4 :         log.Debugf(&quot;pod '%s' status: '%s'&quot;, o.settings.UserSpecifiedPodName, pod.Status.Phase)</span></span>
-<span id="L325"><span class="lineNum">     325</span> <span class="tlaGNC">           4 : </span></span>
-<span id="L326"><span class="lineNum">     326</span> <span class="tlaGNC">           4 :         if len(pod.Spec.Containers) &lt; 1 {</span></span>
-<span id="L327"><span class="lineNum">     327</span> <span class="tlaGNC">           1 :                 return errors.New(&quot;no containers in specified pod&quot;)</span></span>
-<span id="L328"><span class="lineNum">     328</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L329"><span class="lineNum">     329</span>              : </span>
-<span id="L330"><span class="lineNum">     330</span> <span class="tlaGNC">           3 :         if o.settings.UserSpecifiedContainer == &quot;&quot; {</span></span>
-<span id="L331"><span class="lineNum">     331</span> <span class="tlaGNC">           1 :                 log.Info(&quot;no container specified, taking first container we found in pod.&quot;)</span></span>
-<span id="L332"><span class="lineNum">     332</span> <span class="tlaGNC">           1 :                 o.settings.UserSpecifiedContainer = pod.Spec.Containers[0].Name</span></span>
-<span id="L333"><span class="lineNum">     333</span> <span class="tlaGNC">           1 :                 log.Infof(&quot;selected container: '%s'&quot;, o.settings.UserSpecifiedContainer)</span></span>
-<span id="L334"><span class="lineNum">     334</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L335"><span class="lineNum">     335</span>              : </span>
-<span id="L336"><span class="lineNum">     336</span> <span class="tlaGNC">           3 :         if err := o.findContainerId(pod); err != nil {</span></span>
-<span id="L337"><span class="lineNum">     337</span> <span class="tlaGNC">           1 :                 return err</span></span>
-<span id="L338"><span class="lineNum">     338</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L339"><span class="lineNum">     339</span>              : </span>
-<span id="L340"><span class="lineNum">     340</span> <span class="tlaGNC">           2 :         kubernetesApiService := kube.NewKubernetesApiService(o.clientset, o.restConfig, o.resultingContext.Namespace)</span></span>
-<span id="L341"><span class="lineNum">     341</span> <span class="tlaGNC">           2 : </span></span>
-<span id="L342"><span class="lineNum">     342</span> <span class="tlaGNC">           2 :         if o.settings.UserSpecifiedPrivilegedMode {</span></span>
-<span id="L343"><span class="lineNum">     343</span> <span class="tlaGNC">           2 :                 log.Info(&quot;sniffing method: privileged pod&quot;)</span></span>
-<span id="L344"><span class="lineNum">     344</span> <span class="tlaGNC">           2 :                 bridge := runtime.NewContainerRuntimeBridge(o.settings.DetectedContainerRuntime)</span></span>
-<span id="L345"><span class="lineNum">     345</span> <span class="tlaGNC">           2 :                 o.snifferService = sniffer.NewPrivilegedPodRemoteSniffingService(o.settings, kubernetesApiService, bridge)</span></span>
-<span id="L346"><span class="lineNum">     346</span> <span class="tlaGNC">           2 :         } else {</span></span>
-<span id="L347"><span class="lineNum">     347</span> <span class="tlaUNC">           0 :                 log.Info(&quot;sniffing method: upload static tcpdump&quot;)</span></span>
-<span id="L348"><span class="lineNum">     348</span> <span class="tlaUNC">           0 :                 o.snifferService = sniffer.NewUploadTcpdumpRemoteSniffingService(o.settings, kubernetesApiService)</span></span>
-<span id="L349"><span class="lineNum">     349</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L350"><span class="lineNum">     350</span>              : </span>
-<span id="L351"><span class="lineNum">     351</span> <span class="tlaGNC">           2 :         return nil</span></span>
-<span id="L352"><span class="lineNum">     352</span>              : }</span>
-<span id="L353"><span class="lineNum">     353</span>              : </span>
-<span id="L354"><span class="lineNum">     354</span> <span class="tlaGNC">           3 : func (o *Ksniff) findContainerId(pod *corev1.Pod) error {</span></span>
-<span id="L355"><span class="lineNum">     355</span> <span class="tlaGNC">           3 :         for _, containerStatus := range pod.Status.ContainerStatuses {</span></span>
-<span id="L356"><span class="lineNum">     356</span> <span class="tlaGNC">           3 :                 if o.settings.UserSpecifiedContainer == containerStatus.Name {</span></span>
-<span id="L357"><span class="lineNum">     357</span> <span class="tlaGNC">           2 :                         result := strings.Split(containerStatus.ContainerID, &quot;://&quot;)</span></span>
-<span id="L358"><span class="lineNum">     358</span> <span class="tlaGNC">           2 :                         if len(result) != 2 {</span></span>
-<span id="L359"><span class="lineNum">     359</span> <span class="tlaUNC">           0 :                                 break</span></span>
-<span id="L360"><span class="lineNum">     360</span>              :                         }</span>
-<span id="L361"><span class="lineNum">     361</span> <span class="tlaGNC">           2 :                         o.settings.DetectedContainerRuntime = result[0]</span></span>
-<span id="L362"><span class="lineNum">     362</span> <span class="tlaGNC">           2 :                         o.settings.DetectedContainerId = result[1]</span></span>
-<span id="L363"><span class="lineNum">     363</span> <span class="tlaGNC">           2 :                         return nil</span></span>
-<span id="L364"><span class="lineNum">     364</span>              :                 }</span>
-<span id="L365"><span class="lineNum">     365</span>              :         }</span>
-<span id="L366"><span class="lineNum">     366</span>              : </span>
-<span id="L367"><span class="lineNum">     367</span> <span class="tlaGNC">           1 :         return errors.Errorf(&quot;couldn't find container: '%s' in pod: '%s'&quot;, o.settings.UserSpecifiedContainer, o.settings.UserSpecifiedPodName)</span></span>
-<span id="L368"><span class="lineNum">     368</span>              : }</span>
-<span id="L369"><span class="lineNum">     369</span>              : </span>
-<span id="L370"><span class="lineNum">     370</span> <span class="tlaUNC">           0 : func findLocalTcpdumpBinaryPath() (string, error) {</span></span>
-<span id="L371"><span class="lineNum">     371</span> <span class="tlaUNC">           0 :         log.Debugf(&quot;searching for tcpdump binary using lookup list: '%v'&quot;, tcpdumpLocalBinaryPathLookupList)</span></span>
-<span id="L372"><span class="lineNum">     372</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L373"><span class="lineNum">     373</span> <span class="tlaUNC">           0 :         for _, possibleTcpdumpPath := range tcpdumpLocalBinaryPathLookupList {</span></span>
-<span id="L374"><span class="lineNum">     374</span> <span class="tlaUNC">           0 :                 if _, err := os.Stat(possibleTcpdumpPath); err == nil {</span></span>
-<span id="L375"><span class="lineNum">     375</span> <span class="tlaUNC">           0 :                         log.Debugf(&quot;tcpdump binary found at: '%s'&quot;, possibleTcpdumpPath)</span></span>
-<span id="L376"><span class="lineNum">     376</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L377"><span class="lineNum">     377</span> <span class="tlaUNC">           0 :                         return possibleTcpdumpPath, nil</span></span>
-<span id="L378"><span class="lineNum">     378</span> <span class="tlaUNC">           0 :                 }</span></span>
-<span id="L379"><span class="lineNum">     379</span>              : </span>
-<span id="L380"><span class="lineNum">     380</span> <span class="tlaUNC">           0 :                 log.Debugf(&quot;tcpdump binary was not found at: '%s'&quot;, possibleTcpdumpPath)</span></span>
-<span id="L381"><span class="lineNum">     381</span>              :         }</span>
-<span id="L382"><span class="lineNum">     382</span>              : </span>
-<span id="L383"><span class="lineNum">     383</span> <span class="tlaUNC">           0 :         return &quot;&quot;, errors.Errorf(&quot;couldn't find static tcpdump binary on any of: '%v'&quot;, tcpdumpLocalBinaryPathLookupList)</span></span>
-<span id="L384"><span class="lineNum">     384</span>              : }</span>
-<span id="L385"><span class="lineNum">     385</span>              : </span>
-<span id="L386"><span class="lineNum">     386</span> <span class="tlaUNC">           0 : func (o *Ksniff) setupSignalHandler() chan interface{} {</span></span>
-<span id="L387"><span class="lineNum">     387</span> <span class="tlaUNC">           0 :         signals := make(chan os.Signal, 1)</span></span>
-<span id="L388"><span class="lineNum">     388</span> <span class="tlaUNC">           0 :         exit := make(chan interface{})</span></span>
-<span id="L389"><span class="lineNum">     389</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L390"><span class="lineNum">     390</span> <span class="tlaUNC">           0 :         signal.Notify(signals, syscall.SIGINT)</span></span>
-<span id="L391"><span class="lineNum">     391</span> <span class="tlaUNC">           0 :         go func() {</span></span>
-<span id="L392"><span class="lineNum">     392</span> <span class="tlaUNC">           0 :                 for {</span></span>
-<span id="L393"><span class="lineNum">     393</span> <span class="tlaUNC">           0 :                         select {</span></span>
-<span id="L394"><span class="lineNum">     394</span> <span class="tlaUNC">           0 :                         case sig := &lt;-signals:</span></span>
-<span id="L395"><span class="lineNum">     395</span> <span class="tlaUNC">           0 :                                 if sig == syscall.SIGINT || sig == syscall.SIGTERM {</span></span>
-<span id="L396"><span class="lineNum">     396</span> <span class="tlaUNC">           0 :                                         log.Info(&quot;starting sniffer cleanup&quot;)</span></span>
-<span id="L397"><span class="lineNum">     397</span> <span class="tlaUNC">           0 :                                         err := o.snifferService.Cleanup()</span></span>
-<span id="L398"><span class="lineNum">     398</span> <span class="tlaUNC">           0 :                                         if err != nil {</span></span>
-<span id="L399"><span class="lineNum">     399</span> <span class="tlaUNC">           0 :                                                 log.WithError(err).Error(&quot;failed to teardown sniffer, a manual teardown is required.&quot;)</span></span>
-<span id="L400"><span class="lineNum">     400</span> <span class="tlaUNC">           0 :                                         }</span></span>
-<span id="L401"><span class="lineNum">     401</span> <span class="tlaUNC">           0 :                                         log.Info(&quot;sniffer cleanup completed successfully&quot;)</span></span>
-<span id="L402"><span class="lineNum">     402</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L403"><span class="lineNum">     403</span> <span class="tlaUNC">           0 :                                         // Kill wireshark if used</span></span>
-<span id="L404"><span class="lineNum">     404</span> <span class="tlaUNC">           0 :                                         if o.wireshark != nil {</span></span>
-<span id="L405"><span class="lineNum">     405</span> <span class="tlaUNC">           0 :                                                 if o.wireshark.Process != nil {</span></span>
-<span id="L406"><span class="lineNum">     406</span> <span class="tlaUNC">           0 :                                                         err = o.wireshark.Process.Kill()</span></span>
-<span id="L407"><span class="lineNum">     407</span> <span class="tlaUNC">           0 :                                                         if err != nil &amp;&amp; err != os.ErrProcessDone {</span></span>
-<span id="L408"><span class="lineNum">     408</span> <span class="tlaUNC">           0 :                                                                 log.WithError(err).Error(&quot;failed to kill wireshark process&quot;)</span></span>
-<span id="L409"><span class="lineNum">     409</span> <span class="tlaUNC">           0 :                                                         } else {</span></span>
-<span id="L410"><span class="lineNum">     410</span> <span class="tlaUNC">           0 :                                                                 log.Debug(&quot;wireshark process killed&quot;)</span></span>
-<span id="L411"><span class="lineNum">     411</span> <span class="tlaUNC">           0 :                                                         }</span></span>
-<span id="L412"><span class="lineNum">     412</span>              :                                                 }</span>
-<span id="L413"><span class="lineNum">     413</span>              :                                         }</span>
-<span id="L414"><span class="lineNum">     414</span>              : </span>
-<span id="L415"><span class="lineNum">     415</span> <span class="tlaUNC">           0 :                                         close(signals)</span></span>
-<span id="L416"><span class="lineNum">     416</span>              :                                 }</span>
-<span id="L417"><span class="lineNum">     417</span> <span class="tlaUNC">           0 :                         case &lt;-exit:</span></span>
-<span id="L418"><span class="lineNum">     418</span> <span class="tlaUNC">           0 :                                 return</span></span>
-<span id="L419"><span class="lineNum">     419</span>              :                         }</span>
-<span id="L420"><span class="lineNum">     420</span>              : </span>
-<span id="L421"><span class="lineNum">     421</span>              :                 }</span>
-<span id="L422"><span class="lineNum">     422</span>              :         }()</span>
-<span id="L423"><span class="lineNum">     423</span> <span class="tlaUNC">           0 :         return exit</span></span>
-<span id="L424"><span class="lineNum">     424</span>              : }</span>
-<span id="L425"><span class="lineNum">     425</span>              : </span>
-<span id="L426"><span class="lineNum">     426</span> <span class="tlaUNC">           0 : func (o *Ksniff) Run() error {</span></span>
-<span id="L427"><span class="lineNum">     427</span> <span class="tlaUNC">           0 :         log.Infof(&quot;sniffing on pod: '%s' [namespace: '%s', container: '%s', filter: '%s', interface: '%s']&quot;,</span></span>
-<span id="L428"><span class="lineNum">     428</span> <span class="tlaUNC">           0 :                 o.settings.UserSpecifiedPodName, o.resultingContext.Namespace, o.settings.UserSpecifiedContainer, o.settings.UserSpecifiedFilter, o.settings.UserSpecifiedInterface)</span></span>
-<span id="L429"><span class="lineNum">     429</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L430"><span class="lineNum">     430</span> <span class="tlaUNC">           0 :         err := o.snifferService.Setup()</span></span>
-<span id="L431"><span class="lineNum">     431</span> <span class="tlaUNC">           0 :         if err != nil {</span></span>
-<span id="L432"><span class="lineNum">     432</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L433"><span class="lineNum">     433</span> <span class="tlaUNC">           0 :         }</span></span>
-<span id="L434"><span class="lineNum">     434</span>              : </span>
-<span id="L435"><span class="lineNum">     435</span>              :         // Ensure sniffer is clean on interrupt</span>
-<span id="L436"><span class="lineNum">     436</span> <span class="tlaUNC">           0 :         closeHandler := o.setupSignalHandler()</span></span>
-<span id="L437"><span class="lineNum">     437</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L438"><span class="lineNum">     438</span> <span class="tlaUNC">           0 :         // Ensure sniffer is clean on complete</span></span>
-<span id="L439"><span class="lineNum">     439</span> <span class="tlaUNC">           0 :         defer func() {</span></span>
-<span id="L440"><span class="lineNum">     440</span> <span class="tlaUNC">           0 :                 closeHandler &lt;- true</span></span>
-<span id="L441"><span class="lineNum">     441</span> <span class="tlaUNC">           0 :         }()</span></span>
-<span id="L442"><span class="lineNum">     442</span>              : </span>
-<span id="L443"><span class="lineNum">     443</span> <span class="tlaUNC">           0 :         if o.settings.UserSpecifiedOutputFile != &quot;&quot; {</span></span>
-<span id="L444"><span class="lineNum">     444</span> <span class="tlaUNC">           0 :                 log.Infof(&quot;output file option specified, storing output in: '%s'&quot;, o.settings.UserSpecifiedOutputFile)</span></span>
-<span id="L445"><span class="lineNum">     445</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L446"><span class="lineNum">     446</span> <span class="tlaUNC">           0 :                 var err error</span></span>
-<span id="L447"><span class="lineNum">     447</span> <span class="tlaUNC">           0 :                 var fileWriter io.Writer</span></span>
-<span id="L448"><span class="lineNum">     448</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L449"><span class="lineNum">     449</span> <span class="tlaUNC">           0 :                 if o.settings.UserSpecifiedOutputFile == &quot;-&quot; {</span></span>
-<span id="L450"><span class="lineNum">     450</span> <span class="tlaUNC">           0 :                         fileWriter = os.Stdout</span></span>
-<span id="L451"><span class="lineNum">     451</span> <span class="tlaUNC">           0 :                 } else {</span></span>
-<span id="L452"><span class="lineNum">     452</span> <span class="tlaUNC">           0 :                         fileWriter, err = os.Create(o.settings.UserSpecifiedOutputFile)</span></span>
-<span id="L453"><span class="lineNum">     453</span> <span class="tlaUNC">           0 :                         if err != nil {</span></span>
-<span id="L454"><span class="lineNum">     454</span> <span class="tlaUNC">           0 :                                 return err</span></span>
-<span id="L455"><span class="lineNum">     455</span> <span class="tlaUNC">           0 :                         }</span></span>
-<span id="L456"><span class="lineNum">     456</span>              :                 }</span>
-<span id="L457"><span class="lineNum">     457</span>              : </span>
-<span id="L458"><span class="lineNum">     458</span> <span class="tlaUNC">           0 :                 err = o.snifferService.Start(fileWriter)</span></span>
-<span id="L459"><span class="lineNum">     459</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
-<span id="L460"><span class="lineNum">     460</span> <span class="tlaUNC">           0 :                         return err</span></span>
-<span id="L461"><span class="lineNum">     461</span> <span class="tlaUNC">           0 :                 }</span></span>
-<span id="L462"><span class="lineNum">     462</span>              : </span>
-<span id="L463"><span class="lineNum">     463</span> <span class="tlaUNC">           0 :         } else {</span></span>
-<span id="L464"><span class="lineNum">     464</span> <span class="tlaUNC">           0 :                 log.Info(&quot;spawning wireshark!&quot;)</span></span>
-<span id="L465"><span class="lineNum">     465</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L466"><span class="lineNum">     466</span> <span class="tlaUNC">           0 :                 title := fmt.Sprintf(&quot;gui.window_title:%s/%s/%s&quot;, o.resultingContext.Namespace, o.settings.UserSpecifiedPodName, o.settings.UserSpecifiedContainer)</span></span>
-<span id="L467"><span class="lineNum">     467</span> <span class="tlaUNC">           0 :                 o.wireshark = exec.Command(&quot;wireshark&quot;, &quot;-k&quot;, &quot;-i&quot;, &quot;-&quot;, &quot;-o&quot;, title)</span></span>
-<span id="L468"><span class="lineNum">     468</span> <span class="tlaUNC">           0 : </span></span>
-<span id="L469"><span class="lineNum">     469</span> <span class="tlaUNC">           0 :                 stdinWriter, err := o.wireshark.StdinPipe()</span></span>
-<span id="L470"><span class="lineNum">     470</span> <span class="tlaUNC">           0 :                 if err != nil {</span></span>
-<span id="L471"><span class="lineNum">     471</span> <span class="tlaUNC">           0 :                         return err</span></span>
-<span id="L472"><span class="lineNum">     472</span> <span class="tlaUNC">           0 :                 }</span></span>
-<span id="L473"><span class="lineNum">     473</span>              : </span>
-<span id="L474"><span class="lineNum">     474</span> <span class="tlaUNC">           0 :                 go func() {</span></span>
-<span id="L475"><span class="lineNum">     475</span> <span class="tlaUNC">           0 :                         err := o.snifferService.Start(stdinWriter)</span></span>
-<span id="L476"><span class="lineNum">     476</span> <span class="tlaUNC">           0 :                         if err != nil {</span></span>
-<span id="L477"><span class="lineNum">     477</span> <span class="tlaUNC">           0 :                                 log.WithError(err).Errorf(&quot;failed to start remote sniffing, stopping wireshark&quot;)</span></span>
-<span id="L478"><span class="lineNum">     478</span> <span class="tlaUNC">           0 :                                 _ = o.wireshark.Process.Kill()</span></span>
-<span id="L479"><span class="lineNum">     479</span> <span class="tlaUNC">           0 :                         }</span></span>
-<span id="L480"><span class="lineNum">     480</span>              :                 }()</span>
-<span id="L481"><span class="lineNum">     481</span>              : </span>
-<span id="L482"><span class="lineNum">     482</span> <span class="tlaUNC">           0 :                 err = o.wireshark.Run()</span></span>
-<span id="L483"><span class="lineNum">     483</span> <span class="tlaUNC">           0 :                 return err</span></span>
-<span id="L484"><span class="lineNum">     484</span>              :         }</span>
-<span id="L485"><span class="lineNum">     485</span>              : </span>
-<span id="L486"><span class="lineNum">     486</span> <span class="tlaUNC">           0 :         return nil</span></span>
-<span id="L487"><span class="lineNum">     487</span>              : }</span>
-        </pre>
-              </td>
-            </tr>
-          </table>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html
deleted file mode 100644
index 0f934d0..0000000
--- a/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/index.html
+++ /dev/null
@@ -1,98 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/utils</title>
-  <link rel="stylesheet" type="text/css" href="../../../../../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../../../../../index.html" title="Click to go to top-level">top level</a> - /Users/mtl/Development/omnicate-ksniff/utils</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntry">36</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><img src="../../../../../glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="../../../../../glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="utils.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/utils/utils.go">utils.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../../../../../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html b/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html
deleted file mode 100644
index c59ac96..0000000
--- a/coverage_html/Users/mtl/Development/omnicate-ksniff/utils/utils.go.gcov.html
+++ /dev/null
@@ -1,128 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - Users/mtl/Development/omnicate-ksniff/utils/utils.go</title>
-  <link rel="stylesheet" type="text/css" href="../../../../../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../../../../../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils</a> - utils.go</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntry">36</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <table cellpadding=0 cellspacing=0 border=0>
-            <tr>
-              <td><br></td>
-            </tr>
-            <tr>
-              <td>
-<pre class="sourceHeading">            Line data    Source code</pre>
-<pre class="source">
-<span id="L1"><span class="lineNum">       1</span>              : package utils</span>
-<span id="L2"><span class="lineNum">       2</span>              : </span>
-<span id="L3"><span class="lineNum">       3</span>              : import (</span>
-<span id="L4"><span class="lineNum">       4</span>              :         &quot;context&quot;</span>
-<span id="L5"><span class="lineNum">       5</span>              :         &quot;math/rand&quot;</span>
-<span id="L6"><span class="lineNum">       6</span>              :         &quot;time&quot;</span>
-<span id="L7"><span class="lineNum">       7</span>              : )</span>
-<span id="L8"><span class="lineNum">       8</span>              : </span>
-<span id="L9"><span class="lineNum">       9</span> <span class="tlaGNC">           4 : func RunWhileFalse(fn func() bool, timeout time.Duration, delay time.Duration) bool {</span></span>
-<span id="L10"><span class="lineNum">      10</span> <span class="tlaGNC">           4 :         var ctx context.Context</span></span>
-<span id="L11"><span class="lineNum">      11</span> <span class="tlaGNC">           4 :         var cancel context.CancelFunc</span></span>
-<span id="L12"><span class="lineNum">      12</span> <span class="tlaGNC">           4 :         if fn() {</span></span>
-<span id="L13"><span class="lineNum">      13</span> <span class="tlaGNC">           1 :                 return true</span></span>
-<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L15"><span class="lineNum">      15</span>              : </span>
-<span id="L16"><span class="lineNum">      16</span>              :         // Timeout 0 is infinite timeout</span>
-<span id="L17"><span class="lineNum">      17</span> <span class="tlaGNC">           3 :         if (timeout == 0) {</span></span>
-<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 :                 ctx, cancel = context.WithCancel(context.Background())</span></span>
-<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           2 :         } else {</span></span>
-<span id="L20"><span class="lineNum">      20</span> <span class="tlaGNC">           2 :                 ctx, cancel = context.WithTimeout(context.Background(), timeout)</span></span>
-<span id="L21"><span class="lineNum">      21</span> <span class="tlaGNC">           2 :         }</span></span>
-<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           3 :         delayTick := time.NewTicker(delay)</span></span>
-<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           3 : </span></span>
-<span id="L24"><span class="lineNum">      24</span> <span class="tlaGNC">           3 :         defer delayTick.Stop()</span></span>
-<span id="L25"><span class="lineNum">      25</span> <span class="tlaGNC">           3 :         defer cancel()</span></span>
-<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           3 : </span></span>
-<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">           8 :         for {</span></span>
-<span id="L28"><span class="lineNum">      28</span> <span class="tlaGNC">           8 :                 select {</span></span>
-<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">           1 :                 case &lt;-ctx.Done():</span></span>
-<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           1 :                         return false</span></span>
-<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           6 :                 case &lt;-delayTick.C:</span></span>
-<span id="L32"><span class="lineNum">      32</span> <span class="tlaGNC">           6 :                         if fn() {</span></span>
-<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           1 :                                 cancel()</span></span>
-<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           1 :                                 return true</span></span>
-<span id="L35"><span class="lineNum">      35</span> <span class="tlaGNC">           1 :                         }</span></span>
-<span id="L36"><span class="lineNum">      36</span>              :                 }</span>
-<span id="L37"><span class="lineNum">      37</span>              :         }</span>
-<span id="L38"><span class="lineNum">      38</span>              : }</span>
-<span id="L39"><span class="lineNum">      39</span>              : </span>
-<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           6 : func GenerateRandomString(length int) string {</span></span>
-<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           6 : </span></span>
-<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           6 :         rand.Seed(time.Now().UnixNano())</span></span>
-<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           6 : </span></span>
-<span id="L44"><span class="lineNum">      44</span> <span class="tlaGNC">           6 :         var letterRunes = []rune(&quot;abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ&quot;)</span></span>
-<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           6 : </span></span>
-<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           6 :         b := make([]rune, length)</span></span>
-<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">          48 :         for i := range b {</span></span>
-<span id="L48"><span class="lineNum">      48</span> <span class="tlaGNC">          48 :                 b[i] = letterRunes[rand.Intn(len(letterRunes))]</span></span>
-<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">          48 :         }</span></span>
-<span id="L50"><span class="lineNum">      50</span>              : </span>
-<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           6 :         return string(b)</span></span>
-<span id="L52"><span class="lineNum">      52</span>              : }</span>
-        </pre>
-              </td>
-            </tr>
-          </table>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../../../../../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/amber.png b/coverage_html/amber.png
deleted file mode 100644
index 2cab170d8359081983a4e343848dfe06bc490f12..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^G2tW}LqE04T&+
z;1OBOz`!j8!i<;h*8KqrvZOouIx;Y9?C1WI$O`1M1^9%x{(levWG<?@RR^TFJY5_^
cDsCkw0NG3oj8E0?f%GwWy85}Sb4q9e09Jz{aR2}S

diff --git a/coverage_html/cmd_line b/coverage_html/cmd_line
deleted file mode 100644
index e442405..0000000
--- a/coverage_html/cmd_line
+++ /dev/null
@@ -1 +0,0 @@
-genhtml bazel-out/_coverage/_coverage_report.dat -o coverage_html --ignore-errors source
diff --git a/coverage_html/emerald.png b/coverage_html/emerald.png
deleted file mode 100644
index 38ad4f4068b935643d2486f323005fb294a9bd7e..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^Jb<Pkv=K1`2T&
zctjR6FmMZjFyp1Wb$@_@Ea{HEjtmSN`?>!lvI6;R0X`wF(yt=9xVZRt1vCRixIA4P
dLn>}1Cji+@42)0J?}79&c)I$ztaD0e0sy@GAL0N2

diff --git a/coverage_html/gcov.css b/coverage_html/gcov.css
deleted file mode 100644
index 1cacc83..0000000
--- a/coverage_html/gcov.css
+++ /dev/null
@@ -1,1125 +0,0 @@
-/* All views: initial background and text color */
-body
-{
-  color: #000000;
-  background-color: #ffffff;
-}
-
-/* All views: standard link format*/
-a:link
-{
-  color: #284fa8;
-  text-decoration: underline;
-}
-
-/* All views: standard link - visited format */
-a:visited
-{
-  color: #00cb40;
-  text-decoration: underline;
-}
-
-/* All views: standard link - activated format */
-a:active
-{
-  color: #ff0040;
-  text-decoration: underline;
-}
-
-/* All views: main title format */
-td.title
-{
-  text-align: center;
-  padding-bottom: 10px;
-  font-family: sans-serif;
-  font-size: 20pt;
-  font-style: italic;
-  font-weight: bold;
-}
-/* table footnote */
-td.footnote
-{
-  text-align: left;
-  padding-left: 100px;
-  padding-right: 10px;
-  background-color: #dae7fe; /* light blue table background color */
-  /* dark blue table header color
-  background-color: #6688d4; */
-  white-space: nowrap;
-  font-family: sans-serif;
-  font-style: italic;
-  font-size:70%;
-}
-/* "Line coverage date bins" leader */
-td.subTableHeader
-{
-  text-align: center;
-  padding-bottom: 6px;
-  font-family: sans-serif;
-  font-weight: bold;
-  vertical-align: center;
-}
-
-/* All views: header item format */
-td.headerItem
-{
-  text-align: right;
-  padding-right: 6px;
-  font-family: sans-serif;
-  font-weight: bold;
-  vertical-align: top;
-  white-space: nowrap;
-}
-
-/* All views: header item value format */
-td.headerValue
-{
-  text-align: left;
-  color: #284fa8;
-  font-family: sans-serif;
-  font-weight: bold;
-  white-space: nowrap;
-}
-
-/* All views: header item coverage table heading */
-td.headerCovTableHead
-{
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-}
-
-/* All views: header item coverage table entry */
-td.headerCovTableEntry
-{
-  text-align: right;
-  color: #284fa8;
-  font-family: sans-serif;
-  font-weight: bold;
-  white-space: nowrap;
-  padding-left: 12px;
-  padding-right: 4px;
-  background-color: #dae7fe;
-}
-
-/* All views: header item coverage table entry for high coverage rate */
-td.headerCovTableEntryHi
-{
-  text-align: right;
-  color: #000000;
-  font-family: sans-serif;
-  font-weight: bold;
-  white-space: nowrap;
-  padding-left: 12px;
-  padding-right: 4px;
-  background-color: #a7fc9d;
-}
-
-/* All views: header item coverage table entry for medium coverage rate */
-td.headerCovTableEntryMed
-{
-  text-align: right;
-  color: #000000;
-  font-family: sans-serif;
-  font-weight: bold;
-  white-space: nowrap;
-  padding-left: 12px;
-  padding-right: 4px;
-  background-color: #ffea20;
-}
-
-/* All views: header item coverage table entry for ow coverage rate */
-td.headerCovTableEntryLo
-{
-  text-align: right;
-  color: #000000;
-  font-family: sans-serif;
-  font-weight: bold;
-  white-space: nowrap;
-  padding-left: 12px;
-  padding-right: 4px;
-  background-color: #ff0000;
-}
-
-/* All views: header legend value for legend entry */
-td.headerValueLeg
-{
-  text-align: left;
-  color: #000000;
-  font-family: sans-serif;
-  font-size: 80%;
-  white-space: nowrap;
-  padding-top: 4px;
-}
-
-/* All views: color of horizontal ruler */
-td.ruler
-{
-  background-color: #6688d4;
-}
-
-/* All views: version string format */
-td.versionInfo
-{
-  text-align: center;
-  padding-top: 2px;
-  font-family: sans-serif;
-  font-style: italic;
-}
-
-/* Directory view/File view (all)/Test case descriptions:
-   table headline format */
-td.tableHead
-{
-  text-align: center;
-  color: #ffffff;
-  background-color: #6688d4;
-  font-family: sans-serif;
-  font-size: 120%;
-  font-weight: bold;
-  white-space: nowrap;
-  padding-left: 4px;
-  padding-right: 4px;
-}
-
-span.tableHeadSort
-{
-  padding-right: 4px;
-}
-
-/* Directory view/File view (all): filename entry format */
-td.coverFile
-{
-  text-align: left;
-  padding-left: 10px;
-  padding-right: 20px;
-  color: #284fa8;
-  background-color: #dae7fe;
-  font-family: monospace;
-}
-
-/* Directory view/File view (all): directory name entry format */
-td.coverDirectory
-{
-  text-align: left;
-  padding-left: 10px;
-  padding-right: 20px;
-  color: #284fa8;
-  background-color: #b8d0ff;
-  font-family: monospace;
-}
-
-/* Directory view/File view (all): filename entry format */
-td.overallOwner
-{
-  text-align: center;
-  font-weight: bold;
-  font-family: sans-serif;
-  background-color: #dae7fe;
-  padding-right: 10px;
-  padding-left: 10px;
-}
-
-/* Directory view/File view (all): filename entry format */
-td.ownerName
-{
-  text-align: right;
-  font-style: italic;
-  font-family: sans-serif;
-  background-color: #E5DBDB;
-  padding-right: 10px;
-  padding-left: 20px;
-}
-
-/* Directory view/File view (all): bar-graph entry format*/
-td.coverBar
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #dae7fe;
-}
-
-/* Directory view/File view (all): bar-graph entry format*/
-td.owner_coverBar
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #E5DBDB;
-}
-
-/* Directory view/File view (all): bar-graph outline color */
-td.coverBarOutline
-{
-  background-color: #000000;
-}
-
-/* Directory view/File view (all): percentage entry for files with
-   high coverage rate */
-td.coverPerHi
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #a7fc9d;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-/* 'owner' entry:  slightly lighter color than 'coverPerHi' */
-td.owner_coverPerHi
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #82E0AA;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-/* Directory view/File view (all): line count entry */
-td.coverNumDflt
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #dae7fe;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-/* td background color and font for the 'owner' section of the table */
-td.ownerTla
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #E5DBDB;
-  white-space: nowrap;
-  font-family: sans-serif;
-  font-style: italic;
-}
-
-/* Directory view/File view (all): line count entry for files with
-   high coverage rate */
-td.coverNumHi
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #a7fc9d;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-td.owner_coverNumHi
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #82E0AA;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-/* Directory view/File view (all): percentage entry for files with
-   medium coverage rate */
-td.coverPerMed
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #ffea20;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-td.owner_coverPerMed
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #F9E79F;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-/* Directory view/File view (all): line count entry for files with
-   medium coverage rate */
-td.coverNumMed
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #ffea20;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-td.owner_coverNumMed
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #F9E79F;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-/* Directory view/File view (all): percentage entry for files with
-   low coverage rate */
-td.coverPerLo
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #ff0000;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-td.owner_coverPerLo
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #EC7063;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-/* Directory view/File view (all): line count entry for files with
-   low coverage rate */
-td.coverNumLo
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #ff0000;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-td.owner_coverNumLo
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #EC7063;
-  white-space: nowrap;
-  font-family: sans-serif;
-}
-
-/* File view (all): "show/hide details" link format */
-a.detail:link
-{
-  color: #b8d0ff;
-  font-size:80%;
-}
-
-/* File view (all): "show/hide details" link - visited format */
-a.detail:visited
-{
-  color: #b8d0ff;
-  font-size:80%;
-}
-
-/* File view (all): "show/hide details" link - activated format */
-a.detail:active
-{
-  color: #ffffff;
-  font-size:80%;
-}
-
-/* File view (detail): test name entry */
-td.testName
-{
-  text-align: right;
-  padding-right: 10px;
-  background-color: #dae7fe;
-  font-family: sans-serif;
-}
-
-/* File view (detail): test percentage entry */
-td.testPer
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #dae7fe;
-  font-family: sans-serif;
-}
-
-/* File view (detail): test lines count entry */
-td.testNum
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #dae7fe;
-  font-family: sans-serif;
-}
-
-/* Test case descriptions: test name format*/
-dt
-{
-  font-family: sans-serif;
-  font-weight: bold;
-}
-
-/* Test case descriptions: description table body */
-td.testDescription
-{
-  padding-top: 10px;
-  padding-left: 30px;
-  padding-bottom: 10px;
-  padding-right: 30px;
-  background-color: #dae7fe;
-}
-
-/* Source code view: function entry */
-td.coverFn
-{
-  text-align: left;
-  padding-left: 10px;
-  padding-right: 20px;
-  color: #284fa8;
-  background-color: #dae7fe;
-  font-family: monospace;
-}
-
-/* Source code view: function entry zero count*/
-td.coverFnLo
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #ff0000;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-/* Source code view: function entry nonzero count*/
-td.coverFnHi
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #dae7fe;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-td.coverFnAlias
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 20px;
-  color: #284fa8;
-  /* make this a slightly different color than the leader - otherwise,
-     otherwise the alias is hard to distinguish in the table */
-  background-color: #E5DBDB; /* very light pale grey/blue */
-  font-family: monospace;
-}
-
-/* Source code view: function entry zero count*/
-td.coverFnAliasLo
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #EC7063; /* lighter red */
-  font-family: sans-serif;
-}
-
-/* Source code view: function entry nonzero count*/
-td.coverFnAliasHi
-{
-  text-align: right;
-  padding-left: 10px;
-  padding-right: 10px;
-  background-color: #dae7fe;
-  font-weight: bold;
-  font-family: sans-serif;
-}
-
-/* Source code view: source code format */
-pre.source
-{
-  font-family: monospace;
-  white-space: pre;
-  margin-top: 2px;
-}
-
-/* elided/removed code */
-span.elidedSource
-{
-  font-family: sans-serif;
-  /*font-size: 8pt; */
-  font-style: italic;
-  background-color: lightgrey;
-}
-
-/* Source code view: line number format */
-span.lineNum
-{
-  background-color: #efe383;
-}
-
-/* Source code view: line number format when there are deleted
-   lines in the corresponding location */
-span.lineNumWithDelete
-{
-  foreground-color: #efe383;
-  background-color: lightgrey;
-}
-
-/* Source code view: format for Cov legend */
-span.coverLegendCov
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  padding-bottom: 2px;
-  background-color: #cad7fe;
-}
-
-/* Source code view: format for NoCov legend */
-span.coverLegendNoCov
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  padding-bottom: 2px;
-  background-color: #ff6230;
-}
-
-/* Source code view: format for the source code heading line */
-pre.sourceHeading
-{
-  white-space: pre;
-  font-family: monospace;
-  font-weight: bold;
-  margin: 0px;
-}
-
-/* All views: header legend value for low rate */
-td.headerValueLegL
-{
-  font-family: sans-serif;
-  text-align: center;
-  white-space: nowrap;
-  padding-left: 4px;
-  padding-right: 2px;
-  background-color: #ff0000;
-  font-size: 80%;
-}
-
-/* All views: header legend value for med rate */
-td.headerValueLegM
-{
-  font-family: sans-serif;
-  text-align: center;
-  white-space: nowrap;
-  padding-left: 2px;
-  padding-right: 2px;
-  background-color: #ffea20;
-  font-size: 80%;
-}
-
-/* All views: header legend value for hi rate */
-td.headerValueLegH
-{
-  font-family: sans-serif;
-  text-align: center;
-  white-space: nowrap;
-  padding-left: 2px;
-  padding-right: 4px;
-  background-color: #a7fc9d;
-  font-size: 80%;
-}
-
-/* All views except source code view: legend format for low coverage */
-span.coverLegendCovLo
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  padding-top: 2px;
-  background-color: #ff0000;
-}
-
-/* All views except source code view: legend format for med coverage */
-span.coverLegendCovMed
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  padding-top: 2px;
-  background-color: #ffea20;
-}
-
-/* All views except source code view: legend format for hi coverage */
-span.coverLegendCovHi
-{
-  padding-left: 10px;
-  padding-right: 10px;
-  padding-top: 2px;
-  background-color: #a7fc9d;
-}
-
-a.branchTla:link
-{
-  color: #000000;
-}
-
-a.branchTla:visited
-{
-  color: #000000;
-}
-
-a.mcdcTla:link
-{
-  color: #000000;
-}
-
-a.mcdcTla:visited
-{
-  color: #000000;
-}
-
-/* Source code view/table entry background: format for lines classified as "Uncovered New Code (+ => 0):
-Newly added code is not tested" */
-td.tlaUNC
-{
-  text-align: right;
-  background-color: #FF6230;
-}
-td.tlaBgUNC {
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Uncovered New Code (+ => 0):
-Newly added code is not tested" */
-span.tlaUNC
-{
-  text-align: left;
-  background-color: #FF6230;
-}
-span.tlaBgUNC {
-  background-color: #FF6230;
-}
-a.tlaBgUNC {
-  background-color: #FF6230;
-  color: #000000;
-}
-
-td.headerCovTableHeadUNC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Lost Baseline Coverage (1 => 0):
-Unchanged code is no longer tested" */
-td.tlaLBC
-{
-  text-align: right;
-  background-color: #FF6230;
-}
-td.tlaBgLBC {
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Lost Baseline Coverage (1 => 0):
-Unchanged code is no longer tested" */
-span.tlaLBC
-{
-  text-align: left;
-  background-color: #FF6230;
-}
-span.tlaBgLBC {
-  background-color: #FF6230;
-}
-a.tlaBgLBC {
-  background-color: #FF6230;
-  color: #000000;
-}
-
-td.headerCovTableHeadLBC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Uncovered Included Code (# => 0):
-Previously unused code is untested" */
-td.tlaUIC
-{
-  text-align: right;
-  background-color: #FF6230;
-}
-td.tlaBgUIC {
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Uncovered Included Code (# => 0):
-Previously unused code is untested" */
-span.tlaUIC
-{
-  text-align: left;
-  background-color: #FF6230;
-}
-span.tlaBgUIC {
-  background-color: #FF6230;
-}
-a.tlaBgUIC {
-  background-color: #FF6230;
-  color: #000000;
-}
-
-td.headerCovTableHeadUIC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Uncovered Baseline Code (0 => 0):
-Unchanged code was untested before, is untested now" */
-td.tlaUBC
-{
-  text-align: right;
-  background-color: #FF6230;
-}
-td.tlaBgUBC {
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Uncovered Baseline Code (0 => 0):
-Unchanged code was untested before, is untested now" */
-span.tlaUBC
-{
-  text-align: left;
-  background-color: #FF6230;
-}
-span.tlaBgUBC {
-  background-color: #FF6230;
-}
-a.tlaBgUBC {
-  background-color: #FF6230;
-  color: #000000;
-}
-
-td.headerCovTableHeadUBC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FF6230;
-}
-
-/* Source code view/table entry background: format for lines classified as "Gained Baseline Coverage (0 => 1):
-Unchanged code is tested now" */
-td.tlaGBC
-{
-  text-align: right;
-  background-color: #CAD7FE;
-}
-td.tlaBgGBC {
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Gained Baseline Coverage (0 => 1):
-Unchanged code is tested now" */
-span.tlaGBC
-{
-  text-align: left;
-  background-color: #CAD7FE;
-}
-span.tlaBgGBC {
-  background-color: #CAD7FE;
-}
-a.tlaBgGBC {
-  background-color: #CAD7FE;
-  color: #000000;
-}
-
-td.headerCovTableHeadGBC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Gained Included Coverage (# => 1):
-Previously unused code is tested now" */
-td.tlaGIC
-{
-  text-align: right;
-  background-color: #CAD7FE;
-}
-td.tlaBgGIC {
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Gained Included Coverage (# => 1):
-Previously unused code is tested now" */
-span.tlaGIC
-{
-  text-align: left;
-  background-color: #CAD7FE;
-}
-span.tlaBgGIC {
-  background-color: #CAD7FE;
-}
-a.tlaBgGIC {
-  background-color: #CAD7FE;
-  color: #000000;
-}
-
-td.headerCovTableHeadGIC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Gained New Coverage (+ => 1):
-Newly added code is tested" */
-td.tlaGNC
-{
-  text-align: right;
-  background-color: #CAD7FE;
-}
-td.tlaBgGNC {
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Gained New Coverage (+ => 1):
-Newly added code is tested" */
-span.tlaGNC
-{
-  text-align: left;
-  background-color: #CAD7FE;
-}
-span.tlaBgGNC {
-  background-color: #CAD7FE;
-}
-a.tlaBgGNC {
-  background-color: #CAD7FE;
-  color: #000000;
-}
-
-td.headerCovTableHeadGNC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Covered Baseline Code (1 => 1):
-Unchanged code was tested before and is still tested" */
-td.tlaCBC
-{
-  text-align: right;
-  background-color: #CAD7FE;
-}
-td.tlaBgCBC {
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Covered Baseline Code (1 => 1):
-Unchanged code was tested before and is still tested" */
-span.tlaCBC
-{
-  text-align: left;
-  background-color: #CAD7FE;
-}
-span.tlaBgCBC {
-  background-color: #CAD7FE;
-}
-a.tlaBgCBC {
-  background-color: #CAD7FE;
-  color: #000000;
-}
-
-td.headerCovTableHeadCBC {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #CAD7FE;
-}
-
-/* Source code view/table entry background: format for lines classified as "Excluded Uncovered Baseline (0 => #):
-Previously untested code is unused now" */
-td.tlaEUB
-{
-  text-align: right;
-  background-color: #FFFFFF;
-}
-td.tlaBgEUB {
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Excluded Uncovered Baseline (0 => #):
-Previously untested code is unused now" */
-span.tlaEUB
-{
-  text-align: left;
-  background-color: #FFFFFF;
-}
-span.tlaBgEUB {
-  background-color: #FFFFFF;
-}
-a.tlaBgEUB {
-  background-color: #FFFFFF;
-  color: #000000;
-}
-
-td.headerCovTableHeadEUB {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Excluded Covered Baseline (1 => #):
-Previously tested code is unused now" */
-td.tlaECB
-{
-  text-align: right;
-  background-color: #FFFFFF;
-}
-td.tlaBgECB {
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Excluded Covered Baseline (1 => #):
-Previously tested code is unused now" */
-span.tlaECB
-{
-  text-align: left;
-  background-color: #FFFFFF;
-}
-span.tlaBgECB {
-  background-color: #FFFFFF;
-}
-a.tlaBgECB {
-  background-color: #FFFFFF;
-  color: #000000;
-}
-
-td.headerCovTableHeadECB {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Deleted Uncovered Baseline (0 => -):
-Previously untested code has been deleted" */
-td.tlaDUB
-{
-  text-align: right;
-  background-color: #FFFFFF;
-}
-td.tlaBgDUB {
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Deleted Uncovered Baseline (0 => -):
-Previously untested code has been deleted" */
-span.tlaDUB
-{
-  text-align: left;
-  background-color: #FFFFFF;
-}
-span.tlaBgDUB {
-  background-color: #FFFFFF;
-}
-a.tlaBgDUB {
-  background-color: #FFFFFF;
-  color: #000000;
-}
-
-td.headerCovTableHeadDUB {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Deleted Covered Baseline (1 => -):
-Previously tested code has been deleted" */
-td.tlaDCB
-{
-  text-align: right;
-  background-color: #FFFFFF;
-}
-td.tlaBgDCB {
-  background-color: #FFFFFF;
-}
-
-/* Source code view/table entry background: format for lines classified as "Deleted Covered Baseline (1 => -):
-Previously tested code has been deleted" */
-span.tlaDCB
-{
-  text-align: left;
-  background-color: #FFFFFF;
-}
-span.tlaBgDCB {
-  background-color: #FFFFFF;
-}
-a.tlaBgDCB {
-  background-color: #FFFFFF;
-  color: #000000;
-}
-
-td.headerCovTableHeadDCB {
-  text-align: center;
-  padding-right: 6px;
-  padding-left: 6px;
-  padding-bottom: 0px;
-  font-family: sans-serif;
-  white-space: nowrap;
-  background-color: #FFFFFF;
-}
-
-/* Source code view: format for date/owner bin that is not hit */
-span.missBins
-{
-  background-color: #ff0000 /* red */
-}
diff --git a/coverage_html/glass.png b/coverage_html/glass.png
deleted file mode 100644
index e1abc00680a3093c49fdb775ae6bdb6764c95af2..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 167
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)gaEa{HEjtmSN`?>!lvI6;R0X`wF
z|Ns97GD8ntt^-nxB|(0{3=Yq3q=7g|-tI089jvk*Kn`btM`SSr1Gf+eGhVt|_XjA*
zUgGKN%6^Gmn4d%Ph(nkFP>9RZ#WAE}PI3Z}&BVayv3^M*kj3EX>gTe~DWM4f=_Dpv

diff --git a/coverage_html/index-sort-f.html b/coverage_html/index-sort-f.html
deleted file mode 100644
index 050a98e..0000000
--- a/coverage_html/index-sort-f.html
+++ /dev/null
@@ -1,116 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat</title>
-  <link rel="stylesheet" type="text/css" href="gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue">top level</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryLo">69.3&nbsp;%</td>
-            <td class="headerCovTableEntry">541</td>
-            <td class="headerCovTableEntry">375</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>Directory <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="ruby.png" width=52 height=10 alt="52.4%"><img src="snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
-              </td>
-              <td class="coverPerLo">52.4&nbsp;%</td>
-              <td class="coverNumDflt">349</td>
-              <td class="coverNumDflt">183</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/utils/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="runtime/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime">runtime/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">156</td>
-              <td class="coverNumDflt">156</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/index-sort-l.html b/coverage_html/index-sort-l.html
deleted file mode 100644
index 3924dac..0000000
--- a/coverage_html/index-sort-l.html
+++ /dev/null
@@ -1,116 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat</title>
-  <link rel="stylesheet" type="text/css" href="gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue">top level</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryLo">69.3&nbsp;%</td>
-            <td class="headerCovTableEntry">541</td>
-            <td class="headerCovTableEntry">375</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>Directory <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="ruby.png" width=52 height=10 alt="52.4%"><img src="snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
-              </td>
-              <td class="coverPerLo">52.4&nbsp;%</td>
-              <td class="coverNumDflt">349</td>
-              <td class="coverNumDflt">183</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/utils/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="runtime/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime">runtime/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">156</td>
-              <td class="coverNumDflt">156</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/index.html b/coverage_html/index.html
deleted file mode 100644
index 6aeb064..0000000
--- a/coverage_html/index.html
+++ /dev/null
@@ -1,116 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat</title>
-  <link rel="stylesheet" type="text/css" href="gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue">top level</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryLo">69.3&nbsp;%</td>
-            <td class="headerCovTableEntry">541</td>
-            <td class="headerCovTableEntry">375</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>Directory <span  title="Click to sort table by file name" class="tableHeadSort"><img src="glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/pkg/cmd/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/cmd">/Users/mtl/Development/omnicate-ksniff/pkg/cmd/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="ruby.png" width=52 height=10 alt="52.4%"><img src="snow.png" width=48 height=10 alt="52.4%"></td></tr></table>
-              </td>
-              <td class="coverPerLo">52.4&nbsp;%</td>
-              <td class="coverNumDflt">349</td>
-              <td class="coverNumDflt">183</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="Users/mtl/Development/omnicate-ksniff/utils/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/utils">/Users/mtl/Development/omnicate-ksniff/utils/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-            <tr>
-              <td class="coverDirectory"><a href="runtime/index.html" title="Click to go to directory /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime">runtime/</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">156</td>
-              <td class="coverNumDflt">156</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/ruby.png b/coverage_html/ruby.png
deleted file mode 100644
index 991b6d4ec9e78be165e3ef757eed1aada287364d..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^FceV#7`HfI^%F
z9+AZi4BSE>%y{W;-5;PJOS+@4BLl<6e(pbstUx|nfKQ0)e^Y%R^MdiLxj>4`)5S5Q
b;#P73kj=!v_*DHKNFRfztDnm{r-UW|iOwIS

diff --git a/coverage_html/runtime/containerd.go.gcov.html b/coverage_html/runtime/containerd.go.gcov.html
deleted file mode 100644
index c48ad7c..0000000
--- a/coverage_html/runtime/containerd.go.gcov.html
+++ /dev/null
@@ -1,145 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime/containerd.go</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - containerd.go</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">47</td>
-            <td class="headerCovTableEntry">47</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <table cellpadding=0 cellspacing=0 border=0>
-            <tr>
-              <td><br></td>
-            </tr>
-            <tr>
-              <td>
-<pre class="sourceHeading">            Line data    Source code</pre>
-<pre class="source">
-<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
-<span id="L2"><span class="lineNum">       2</span>              : </span>
-<span id="L3"><span class="lineNum">       3</span>              : import (</span>
-<span id="L4"><span class="lineNum">       4</span>              :         &quot;fmt&quot;</span>
-<span id="L5"><span class="lineNum">       5</span>              :         &quot;ksniff/utils&quot;</span>
-<span id="L6"><span class="lineNum">       6</span>              : )</span>
-<span id="L7"><span class="lineNum">       7</span>              : </span>
-<span id="L8"><span class="lineNum">       8</span>              : type ContainerdBridge struct {</span>
-<span id="L9"><span class="lineNum">       9</span>              :         tcpdumpContainerName string</span>
-<span id="L10"><span class="lineNum">      10</span>              :         socketPath string</span>
-<span id="L11"><span class="lineNum">      11</span>              : }</span>
-<span id="L12"><span class="lineNum">      12</span>              : </span>
-<span id="L13"><span class="lineNum">      13</span> <span class="tlaGNC">          10 : func NewContainerdBridge() *ContainerdBridge {</span></span>
-<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">          10 :         return &amp;ContainerdBridge{}</span></span>
-<span id="L15"><span class="lineNum">      15</span> <span class="tlaGNC">          10 : }</span></span>
-<span id="L16"><span class="lineNum">      16</span>              : </span>
-<span id="L17"><span class="lineNum">      17</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) NeedsPid() bool {</span></span>
-<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 :         return false</span></span>
-<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L20"><span class="lineNum">      20</span>              : </span>
-<span id="L21"><span class="lineNum">      21</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) BuildInspectCommand(string) []string {</span></span>
-<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           1 :         panic(&quot;Containerd doesn't need this implemented&quot;)</span></span>
-<span id="L23"><span class="lineNum">      23</span>              : }</span>
-<span id="L24"><span class="lineNum">      24</span>              : </span>
-<span id="L25"><span class="lineNum">      25</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) ExtractPid(inspection string) (*string, error) {</span></span>
-<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           1 :         panic(&quot;Containerd doesn't need this implemented&quot;)</span></span>
-<span id="L27"><span class="lineNum">      27</span>              : }</span>
-<span id="L28"><span class="lineNum">      28</span>              : </span>
-<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) GetDefaultSocketPath() string {</span></span>
-<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           1 :         return &quot;/run/containerd/containerd.sock&quot;</span></span>
-<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L32"><span class="lineNum">      32</span>              : </span>
-<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           2 : func (d *ContainerdBridge) BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string {</span></span>
-<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           2 :         d.tcpdumpContainerName = &quot;ksniff-container-&quot; + utils.GenerateRandomString(8)</span></span>
-<span id="L35"><span class="lineNum">      35</span> <span class="tlaGNC">           2 :         d.socketPath = socketPath</span></span>
-<span id="L36"><span class="lineNum">      36</span> <span class="tlaGNC">           2 :         tcpdumpCommand := fmt.Sprintf(&quot;tcpdump -i %s -U -w - %s&quot;, netInterface, filter)</span></span>
-<span id="L37"><span class="lineNum">      37</span> <span class="tlaGNC">           2 :         shellScript := fmt.Sprintf(`</span></span>
-<span id="L38"><span class="lineNum">      38</span> <span class="tlaGNC">           2 :     set -ex</span></span>
-<span id="L39"><span class="lineNum">      39</span> <span class="tlaGNC">           2 :     export CONTAINERD_SOCKET=&quot;%s&quot;</span></span>
-<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           2 :     export CONTAINERD_NAMESPACE=&quot;k8s.io&quot;</span></span>
-<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           2 :     export CONTAINER_RUNTIME_ENDPOINT=&quot;unix:///host${CONTAINERD_SOCKET}&quot;</span></span>
-<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           2 :     export IMAGE_SERVICE_ENDPOINT=${CONTAINER_RUNTIME_ENDPOINT}</span></span>
-<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           2 :     crictl pull %s &gt;/dev/null</span></span>
-<span id="L44"><span class="lineNum">      44</span> <span class="tlaGNC">           2 :     netns=$(crictl inspect %s | jq '.info.runtimeSpec.linux.namespaces[] | select(.type == &quot;network&quot;) | .path' | tr -d '&quot;')</span></span>
-<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           2 :     exec chroot /host ctr -a ${CONTAINERD_SOCKET} run --rm --with-ns &quot;network:${netns}&quot; %s %s %s </span></span>
-<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           2 :     `, d.socketPath, tcpdumpImage, *containerId, tcpdumpImage, d.tcpdumpContainerName, tcpdumpCommand)</span></span>
-<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">           2 :         command := []string{&quot;/bin/sh&quot;, &quot;-c&quot;, shellScript}</span></span>
-<span id="L48"><span class="lineNum">      48</span> <span class="tlaGNC">           2 :         return command</span></span>
-<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">           2 : }</span></span>
-<span id="L50"><span class="lineNum">      50</span>              : </span>
-<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           1 : func (d *ContainerdBridge) BuildCleanupCommand() []string {</span></span>
-<span id="L52"><span class="lineNum">      52</span> <span class="tlaGNC">           1 :         shellScript := fmt.Sprintf(`</span></span>
-<span id="L53"><span class="lineNum">      53</span> <span class="tlaGNC">           1 :     set -ex</span></span>
-<span id="L54"><span class="lineNum">      54</span> <span class="tlaGNC">           1 :     export CONTAINERD_SOCKET=&quot;%s&quot;</span></span>
-<span id="L55"><span class="lineNum">      55</span> <span class="tlaGNC">           1 :     export CONTAINERD_NAMESPACE=&quot;k8s.io&quot;</span></span>
-<span id="L56"><span class="lineNum">      56</span> <span class="tlaGNC">           1 :     export CONTAINER_ID=&quot;%s&quot;</span></span>
-<span id="L57"><span class="lineNum">      57</span> <span class="tlaGNC">           1 :     chroot /host ctr -a ${CONTAINERD_SOCKET} task kill -s SIGKILL ${CONTAINER_ID}</span></span>
-<span id="L58"><span class="lineNum">      58</span> <span class="tlaGNC">           1 :     `, d.socketPath, d.tcpdumpContainerName)</span></span>
-<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">           1 :         command := []string{&quot;/bin/sh&quot;, &quot;-c&quot;, shellScript}</span></span>
-<span id="L60"><span class="lineNum">      60</span> <span class="tlaGNC">           1 :         return command</span></span>
-<span id="L61"><span class="lineNum">      61</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L62"><span class="lineNum">      62</span>              : </span>
-<span id="L63"><span class="lineNum">      63</span> <span class="tlaGNC">           1 : func (d ContainerdBridge) GetDefaultImage() string {</span></span>
-<span id="L64"><span class="lineNum">      64</span> <span class="tlaGNC">           1 :         return &quot;docker.io/hamravesh/ksniff-helper:v3&quot;</span></span>
-<span id="L65"><span class="lineNum">      65</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L66"><span class="lineNum">      66</span>              : </span>
-<span id="L67"><span class="lineNum">      67</span> <span class="tlaGNC">           1 : func (d *ContainerdBridge) GetDefaultTCPImage() string {</span></span>
-<span id="L68"><span class="lineNum">      68</span> <span class="tlaGNC">           1 :         return &quot;docker.io/maintained/tcpdump:latest&quot;</span></span>
-<span id="L69"><span class="lineNum">      69</span> <span class="tlaGNC">           1 : }</span></span>
-        </pre>
-              </td>
-            </tr>
-          </table>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/runtime/crio.go.gcov.html b/coverage_html/runtime/crio.go.gcov.html
deleted file mode 100644
index ff3a3bf..0000000
--- a/coverage_html/runtime/crio.go.gcov.html
+++ /dev/null
@@ -1,169 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime/crio.go</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - crio.go</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">63</td>
-            <td class="headerCovTableEntry">63</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <table cellpadding=0 cellspacing=0 border=0>
-            <tr>
-              <td><br></td>
-            </tr>
-            <tr>
-              <td>
-<pre class="sourceHeading">            Line data    Source code</pre>
-<pre class="source">
-<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
-<span id="L2"><span class="lineNum">       2</span>              : </span>
-<span id="L3"><span class="lineNum">       3</span>              : import (</span>
-<span id="L4"><span class="lineNum">       4</span>              :         &quot;encoding/json&quot;</span>
-<span id="L5"><span class="lineNum">       5</span>              :         &quot;fmt&quot;</span>
-<span id="L6"><span class="lineNum">       6</span>              : </span>
-<span id="L7"><span class="lineNum">       7</span>              :         &quot;github.com/pkg/errors&quot;</span>
-<span id="L8"><span class="lineNum">       8</span>              : )</span>
-<span id="L9"><span class="lineNum">       9</span>              : </span>
-<span id="L10"><span class="lineNum">      10</span>              : type CrioBridge struct {</span>
-<span id="L11"><span class="lineNum">      11</span>              : }</span>
-<span id="L12"><span class="lineNum">      12</span>              : </span>
-<span id="L13"><span class="lineNum">      13</span> <span class="tlaGNC">          20 : func NewCrioBridge() *CrioBridge {</span></span>
-<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">          20 :         return &amp;CrioBridge{}</span></span>
-<span id="L15"><span class="lineNum">      15</span> <span class="tlaGNC">          20 : }</span></span>
-<span id="L16"><span class="lineNum">      16</span>              : </span>
-<span id="L17"><span class="lineNum">      17</span> <span class="tlaGNC">           1 : func (c *CrioBridge) NeedsPid() bool {</span></span>
-<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 :         return true</span></span>
-<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L20"><span class="lineNum">      20</span>              : </span>
-<span id="L21"><span class="lineNum">      21</span> <span class="tlaGNC">           1 : func (c *CrioBridge) BuildInspectCommand(containerId string) []string {</span></span>
-<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           1 :         return []string{&quot;chroot&quot;, &quot;/host&quot;, &quot;crictl&quot;, &quot;inspect&quot;,</span></span>
-<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           1 :                 &quot;--output&quot;, &quot;json&quot;, containerId}</span></span>
-<span id="L24"><span class="lineNum">      24</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L25"><span class="lineNum">      25</span>              : </span>
-<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">          12 : func (c *CrioBridge) ExtractPid(inspection string) (*string, error) {</span></span>
-<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">          12 :         var result map[string]json.RawMessage</span></span>
-<span id="L28"><span class="lineNum">      28</span> <span class="tlaGNC">          12 :         var pid float64</span></span>
-<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">          12 :         var err error</span></span>
-<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">          12 : </span></span>
-<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">          12 :         err = json.Unmarshal([]byte(inspection), &amp;result)</span></span>
-<span id="L32"><span class="lineNum">      32</span> <span class="tlaGNC">          12 :         if err != nil {</span></span>
-<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           3 :                 return nil, err</span></span>
-<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           3 :         }</span></span>
-<span id="L35"><span class="lineNum">      35</span>              : </span>
-<span id="L36"><span class="lineNum">      36</span>              :         // CRI-O changes the way it reports PID so we have to by dynamic here</span>
-<span id="L37"><span class="lineNum">      37</span> <span class="tlaGNC">           9 :         if result[&quot;pid&quot;] != nil {</span></span>
-<span id="L38"><span class="lineNum">      38</span> <span class="tlaGNC">           3 :                 pid, err = extractPidCrio117(result)</span></span>
-<span id="L39"><span class="lineNum">      39</span> <span class="tlaGNC">           3 :                 if err != nil {</span></span>
-<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           1 :                         return nil, errors.Wrap(err, &quot;error getting container PID from CRI-O&quot;)</span></span>
-<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           1 :                 }</span></span>
-<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           6 :         } else if result[&quot;info&quot;] != nil {</span></span>
-<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           3 :                 pid, err = extractPidCrio118(result)</span></span>
-<span id="L44"><span class="lineNum">      44</span> <span class="tlaGNC">           3 :                 if err != nil {</span></span>
-<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           1 :                         return nil, errors.Wrap(err, &quot;error getting container PID from CRI-O&quot;)</span></span>
-<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           1 :                 }</span></span>
-<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">           3 :         } else {</span></span>
-<span id="L48"><span class="lineNum">      48</span> <span class="tlaGNC">           3 :                 return nil, errors.New(&quot;unable to identify CRI-O version&quot;)</span></span>
-<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">           3 :         }</span></span>
-<span id="L50"><span class="lineNum">      50</span>              : </span>
-<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           4 :         ret := fmt.Sprintf(&quot;%.0f&quot;, pid)</span></span>
-<span id="L52"><span class="lineNum">      52</span> <span class="tlaGNC">           4 :         return &amp;ret, nil</span></span>
-<span id="L53"><span class="lineNum">      53</span>              : }</span>
-<span id="L54"><span class="lineNum">      54</span>              : </span>
-<span id="L55"><span class="lineNum">      55</span> <span class="tlaGNC">           1 : func (c *CrioBridge) BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string {</span></span>
-<span id="L56"><span class="lineNum">      56</span> <span class="tlaGNC">           1 :         return []string{&quot;nsenter&quot;, &quot;-n&quot;, &quot;-t&quot;, *pid, &quot;--&quot;, &quot;tcpdump&quot;, &quot;-i&quot;, netInterface, &quot;-U&quot;, &quot;-w&quot;, &quot;-&quot;, filter}</span></span>
-<span id="L57"><span class="lineNum">      57</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L58"><span class="lineNum">      58</span>              : </span>
-<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">           1 : func (c *CrioBridge) BuildCleanupCommand() []string {</span></span>
-<span id="L60"><span class="lineNum">      60</span> <span class="tlaGNC">           1 :         return nil // No cleanup needed</span></span>
-<span id="L61"><span class="lineNum">      61</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L62"><span class="lineNum">      62</span>              : </span>
-<span id="L63"><span class="lineNum">      63</span> <span class="tlaGNC">           1 : func (c *CrioBridge) GetDefaultImage() string {</span></span>
-<span id="L64"><span class="lineNum">      64</span> <span class="tlaGNC">           1 :         return &quot;maintained/tcpdump&quot;</span></span>
-<span id="L65"><span class="lineNum">      65</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L66"><span class="lineNum">      66</span>              : </span>
-<span id="L67"><span class="lineNum">      67</span> <span class="tlaGNC">           1 : func (c *CrioBridge) GetDefaultSocketPath() string {</span></span>
-<span id="L68"><span class="lineNum">      68</span> <span class="tlaGNC">           1 :         return &quot;/var/run/crio/crio.sock&quot;</span></span>
-<span id="L69"><span class="lineNum">      69</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L70"><span class="lineNum">      70</span>              : </span>
-<span id="L71"><span class="lineNum">      71</span>              : // CRI-O 1.17 and older have pid as first-level attribute</span>
-<span id="L72"><span class="lineNum">      72</span> <span class="tlaGNC">           3 : func extractPidCrio117(partial map[string]json.RawMessage) (float64, error) {</span></span>
-<span id="L73"><span class="lineNum">      73</span> <span class="tlaGNC">           3 :         var result float64</span></span>
-<span id="L74"><span class="lineNum">      74</span> <span class="tlaGNC">           3 :         err := json.Unmarshal(partial[&quot;pid&quot;], &amp;result)</span></span>
-<span id="L75"><span class="lineNum">      75</span> <span class="tlaGNC">           3 :         if err != nil {</span></span>
-<span id="L76"><span class="lineNum">      76</span> <span class="tlaGNC">           1 :                 return -1, err</span></span>
-<span id="L77"><span class="lineNum">      77</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L78"><span class="lineNum">      78</span> <span class="tlaGNC">           2 :         return result, nil</span></span>
-<span id="L79"><span class="lineNum">      79</span>              : }</span>
-<span id="L80"><span class="lineNum">      80</span>              : </span>
-<span id="L81"><span class="lineNum">      81</span>              : // CRI-O 1.18 and later nest pid under info attribute</span>
-<span id="L82"><span class="lineNum">      82</span> <span class="tlaGNC">           3 : func extractPidCrio118(partial map[string]json.RawMessage) (float64, error) {</span></span>
-<span id="L83"><span class="lineNum">      83</span> <span class="tlaGNC">           3 :         var result map[string]interface{}</span></span>
-<span id="L84"><span class="lineNum">      84</span> <span class="tlaGNC">           3 :         err := json.Unmarshal(partial[&quot;info&quot;], &amp;result)</span></span>
-<span id="L85"><span class="lineNum">      85</span> <span class="tlaGNC">           3 :         if err != nil {</span></span>
-<span id="L86"><span class="lineNum">      86</span> <span class="tlaGNC">           1 :                 return -1, err</span></span>
-<span id="L87"><span class="lineNum">      87</span> <span class="tlaGNC">           1 :         }</span></span>
-<span id="L88"><span class="lineNum">      88</span> <span class="tlaGNC">           2 :         return result[&quot;pid&quot;].(float64), nil</span></span>
-<span id="L89"><span class="lineNum">      89</span>              : }</span>
-<span id="L90"><span class="lineNum">      90</span>              : </span>
-<span id="L91"><span class="lineNum">      91</span> <span class="tlaGNC">           1 : func (d *CrioBridge) GetDefaultTCPImage() string {</span></span>
-<span id="L92"><span class="lineNum">      92</span> <span class="tlaGNC">           1 :         return &quot;&quot;</span></span>
-<span id="L93"><span class="lineNum">      93</span> <span class="tlaGNC">           1 : }</span></span>
-        </pre>
-              </td>
-            </tr>
-          </table>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/runtime/docker.go.gcov.html b/coverage_html/runtime/docker.go.gcov.html
deleted file mode 100644
index e57834d..0000000
--- a/coverage_html/runtime/docker.go.gcov.html
+++ /dev/null
@@ -1,135 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime/docker.go</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - docker.go</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">36</td>
-            <td class="headerCovTableEntry">36</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <table cellpadding=0 cellspacing=0 border=0>
-            <tr>
-              <td><br></td>
-            </tr>
-            <tr>
-              <td>
-<pre class="sourceHeading">            Line data    Source code</pre>
-<pre class="source">
-<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
-<span id="L2"><span class="lineNum">       2</span>              : </span>
-<span id="L3"><span class="lineNum">       3</span>              : import (</span>
-<span id="L4"><span class="lineNum">       4</span>              :         &quot;fmt&quot;</span>
-<span id="L5"><span class="lineNum">       5</span>              : </span>
-<span id="L6"><span class="lineNum">       6</span>              :         &quot;ksniff/utils&quot;</span>
-<span id="L7"><span class="lineNum">       7</span>              : )</span>
-<span id="L8"><span class="lineNum">       8</span>              : </span>
-<span id="L9"><span class="lineNum">       9</span>              : type DockerBridge struct {</span>
-<span id="L10"><span class="lineNum">      10</span>              :         tcpdumpContainerName string</span>
-<span id="L11"><span class="lineNum">      11</span>              :         cleanupCommand       []string</span>
-<span id="L12"><span class="lineNum">      12</span>              : }</span>
-<span id="L13"><span class="lineNum">      13</span>              : </span>
-<span id="L14"><span class="lineNum">      14</span> <span class="tlaGNC">          14 : func NewDockerBridge() *DockerBridge {</span></span>
-<span id="L15"><span class="lineNum">      15</span> <span class="tlaGNC">          14 :         return &amp;DockerBridge{}</span></span>
-<span id="L16"><span class="lineNum">      16</span> <span class="tlaGNC">          14 : }</span></span>
-<span id="L17"><span class="lineNum">      17</span>              : </span>
-<span id="L18"><span class="lineNum">      18</span> <span class="tlaGNC">           1 : func (d *DockerBridge) NeedsPid() bool {</span></span>
-<span id="L19"><span class="lineNum">      19</span> <span class="tlaGNC">           1 :         return false</span></span>
-<span id="L20"><span class="lineNum">      20</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L21"><span class="lineNum">      21</span>              : </span>
-<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           2 : func (d *DockerBridge) BuildInspectCommand(string) []string {</span></span>
-<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           2 :         panic(&quot;Docker doesn't need this implemented&quot;)</span></span>
-<span id="L24"><span class="lineNum">      24</span>              : }</span>
-<span id="L25"><span class="lineNum">      25</span>              : </span>
-<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           2 : func (d *DockerBridge) ExtractPid(inspection string) (*string, error) {</span></span>
-<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">           2 :         panic(&quot;Docker doesn't need this implemented&quot;)</span></span>
-<span id="L28"><span class="lineNum">      28</span>              : }</span>
-<span id="L29"><span class="lineNum">      29</span>              : </span>
-<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           4 : func (d *DockerBridge) BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string {</span></span>
-<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           4 :         d.tcpdumpContainerName = &quot;ksniff-container-&quot; + utils.GenerateRandomString(8)</span></span>
-<span id="L32"><span class="lineNum">      32</span> <span class="tlaGNC">           4 :         containerNameFlag := fmt.Sprintf(&quot;--name=%s&quot;, d.tcpdumpContainerName)</span></span>
-<span id="L33"><span class="lineNum">      33</span> <span class="tlaGNC">           4 : </span></span>
-<span id="L34"><span class="lineNum">      34</span> <span class="tlaGNC">           4 :         command := []string{&quot;docker&quot;, &quot;--host&quot;, &quot;unix://&quot; + socketPath,</span></span>
-<span id="L35"><span class="lineNum">      35</span> <span class="tlaGNC">           4 :                 &quot;run&quot;, &quot;--rm&quot;, &quot;--log-driver&quot;, &quot;none&quot;, containerNameFlag,</span></span>
-<span id="L36"><span class="lineNum">      36</span> <span class="tlaGNC">           4 :                 fmt.Sprintf(&quot;--net=container:%s&quot;, *containerId), tcpdumpImage, &quot;-i&quot;,</span></span>
-<span id="L37"><span class="lineNum">      37</span> <span class="tlaGNC">           4 :                 netInterface, &quot;-U&quot;, &quot;-w&quot;, &quot;-&quot;, filter}</span></span>
-<span id="L38"><span class="lineNum">      38</span> <span class="tlaGNC">           4 : </span></span>
-<span id="L39"><span class="lineNum">      39</span> <span class="tlaGNC">           4 :         d.cleanupCommand = []string{&quot;docker&quot;, &quot;--host&quot;, &quot;unix://&quot; + socketPath,</span></span>
-<span id="L40"><span class="lineNum">      40</span> <span class="tlaGNC">           4 :                 &quot;rm&quot;, &quot;-f&quot;, d.tcpdumpContainerName}</span></span>
-<span id="L41"><span class="lineNum">      41</span> <span class="tlaGNC">           4 : </span></span>
-<span id="L42"><span class="lineNum">      42</span> <span class="tlaGNC">           4 :         return command</span></span>
-<span id="L43"><span class="lineNum">      43</span> <span class="tlaGNC">           4 : }</span></span>
-<span id="L44"><span class="lineNum">      44</span>              : </span>
-<span id="L45"><span class="lineNum">      45</span> <span class="tlaGNC">           2 : func (d *DockerBridge) BuildCleanupCommand() []string {</span></span>
-<span id="L46"><span class="lineNum">      46</span> <span class="tlaGNC">           2 :         return d.cleanupCommand</span></span>
-<span id="L47"><span class="lineNum">      47</span> <span class="tlaGNC">           2 : }</span></span>
-<span id="L48"><span class="lineNum">      48</span>              : </span>
-<span id="L49"><span class="lineNum">      49</span> <span class="tlaGNC">           1 : func (d *DockerBridge) GetDefaultImage() string {</span></span>
-<span id="L50"><span class="lineNum">      50</span> <span class="tlaGNC">           1 :         return &quot;docker&quot;</span></span>
-<span id="L51"><span class="lineNum">      51</span> <span class="tlaGNC">           1 : }</span></span>
-<span id="L52"><span class="lineNum">      52</span>              : </span>
-<span id="L53"><span class="lineNum">      53</span> <span class="tlaGNC">           3 : func (d *DockerBridge) GetDefaultTCPImage() string {</span></span>
-<span id="L54"><span class="lineNum">      54</span> <span class="tlaGNC">           3 :         return &quot;maintained/tcpdump&quot;</span></span>
-<span id="L55"><span class="lineNum">      55</span> <span class="tlaGNC">           3 : }</span></span>
-<span id="L56"><span class="lineNum">      56</span>              : </span>
-<span id="L57"><span class="lineNum">      57</span> <span class="tlaGNC">           1 : func (d *DockerBridge) GetDefaultSocketPath() string {</span></span>
-<span id="L58"><span class="lineNum">      58</span> <span class="tlaGNC">           1 :         return &quot;/var/run/docker.sock&quot;</span></span>
-<span id="L59"><span class="lineNum">      59</span> <span class="tlaGNC">           1 : }</span></span>
-        </pre>
-              </td>
-            </tr>
-          </table>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/runtime/index-sort-f.html b/coverage_html/runtime/index-sort-f.html
deleted file mode 100644
index 63f8155..0000000
--- a/coverage_html/runtime/index-sort-f.html
+++ /dev/null
@@ -1,125 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - runtime</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">156</td>
-            <td class="headerCovTableEntry">156</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="../updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="../updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="containerd.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/containerd.go">containerd.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">47</td>
-              <td class="coverNumDflt">47</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="crio.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/crio.go">crio.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">63</td>
-              <td class="coverNumDflt">63</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="docker.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/docker.go">docker.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="runtime.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/runtime.go">runtime.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">10</td>
-              <td class="coverNumDflt">10</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/runtime/index-sort-l.html b/coverage_html/runtime/index-sort-l.html
deleted file mode 100644
index c5a57a3..0000000
--- a/coverage_html/runtime/index-sort-l.html
+++ /dev/null
@@ -1,125 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - runtime</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">156</td>
-            <td class="headerCovTableEntry">156</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><a href="index.html"><img src="../updown.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></a></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="runtime.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/runtime.go">runtime.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">10</td>
-              <td class="coverNumDflt">10</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="docker.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/docker.go">docker.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="containerd.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/containerd.go">containerd.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">47</td>
-              <td class="coverNumDflt">47</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="crio.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/crio.go">crio.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">63</td>
-              <td class="coverNumDflt">63</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/runtime/index.html b/coverage_html/runtime/index.html
deleted file mode 100644
index fe1e59e..0000000
--- a/coverage_html/runtime/index.html
+++ /dev/null
@@ -1,125 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - runtime</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">156</td>
-            <td class="headerCovTableEntry">156</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <center>
-          <table width="80%" cellpadding=1 cellspacing=1 border=0>
-
-            <tr>
-              <td width="40%"><br></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            <td width="15%"></td>
-            </tr>
-
-            <tr>
-              <td class="tableHead" rowspan=2>File <span  title="Click to sort table by file name" class="tableHeadSort"><img src="../glass.png" width=10 height=14 alt="Sort by file name" title="Click to sort table by file name" border=0></span></td>
-        <td class="tableHead" colspan=4>Line Coverage <span  title="Click to sort table by line coverage" class="tableHeadSort"><a href="index-sort-l.html"><img src="../updown.png" width=10 height=14 alt="Sort by line coverage" title="Click to sort table by line coverage" border=0></a></span></td>
-            </tr>
-            <tr>
-                    <td class="tableHead" colspan=2> Rate</td>
-                    <td class="tableHead"> Total</td>
-                    <td class="tableHead"> Hit</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="containerd.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/containerd.go">containerd.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">47</td>
-              <td class="coverNumDflt">47</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="crio.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/crio.go">crio.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">63</td>
-              <td class="coverNumDflt">63</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="docker.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/docker.go">docker.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">36</td>
-              <td class="coverNumDflt">36</td>
-            </tr>
-            <tr>
-              <td class="coverFile"><a href="runtime.go.gcov.html" title="Click to go to file /Users/mtl/Development/omnicate-ksniff/pkg/service/sniffer/runtime/runtime.go">runtime.go</a></td>
-              <td class="coverBar" align="center">
-                                <table border=0 cellspacing=0 cellpadding=1><tr><td class="coverBarOutline"><img src="../emerald.png" width=100 height=10 alt="100.0%"></td></tr></table>
-              </td>
-              <td class="coverPerHi">100.0&nbsp;%</td>
-              <td class="coverNumDflt">10</td>
-              <td class="coverNumDflt">10</td>
-            </tr>
-        <tr>
-          <td class="footnote" colspan=5>Note:  'Function Coverage' columns elided as function owner is not identified.</td>
-         </tr>
-          </table>
-          </center>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/runtime/runtime.go.gcov.html b/coverage_html/runtime/runtime.go.gcov.html
deleted file mode 100644
index c07db6b..0000000
--- a/coverage_html/runtime/runtime.go.gcov.html
+++ /dev/null
@@ -1,109 +0,0 @@
-<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
-
-<html lang="en">
-
-<head>
-  <meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
-  <title>LCOV - _coverage_report.dat - runtime/runtime.go</title>
-  <link rel="stylesheet" type="text/css" href="../gcov.css">
-</head>
-
-<body>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="title">LCOV - code coverage report</td></tr>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-
-            <tr>
-              <td width="100%">
-                <table cellpadding=1 border=0 width="100%">
-          <tr>
-            <td width="10%" class="headerItem">Current view:</td>
-            <td width="10%" class="headerValue"><a href="../index.html" title="Click to go to top-level">top level</a> - <a href="index.html" title="Click to go to directory runtime">runtime</a> - runtime.go</td>
-            <td width="5%"></td>
-            <td width="5%"></td>
-            <td width="5%" class="headerCovTableHead">Coverage</td>
-            <td width="5%" class="headerCovTableHead" title="Covered + Uncovered code">Total</td>
-            <td width="5%" class="headerCovTableHead" title="Exercised code only">Hit</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test:</td>
-            <td class="headerValue">_coverage_report.dat</td>
-            <td></td>
-            <td class="headerItem">Lines:</td>
-            <td class="headerCovTableEntryHi">100.0&nbsp;%</td>
-            <td class="headerCovTableEntry">10</td>
-            <td class="headerCovTableEntry">10</td>
-          </tr>
-          <tr>
-            <td class="headerItem">Test Date:</td>
-            <td class="headerValue">2026-01-23 11:51:52</td>
-            <td></td>
-            <td class="headerItem">Functions:</td>
-            <td class="headerCovTableEntryHi">-</td>
-            <td class="headerCovTableEntry">0</td>
-            <td class="headerCovTableEntry">0</td>
-          </tr>
-                  <tr><td><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-                </table>
-              </td>
-            </tr>
-
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-          </table>
-
-          <table cellpadding=0 cellspacing=0 border=0>
-            <tr>
-              <td><br></td>
-            </tr>
-            <tr>
-              <td>
-<pre class="sourceHeading">            Line data    Source code</pre>
-<pre class="source">
-<span id="L1"><span class="lineNum">       1</span>              : package runtime</span>
-<span id="L2"><span class="lineNum">       2</span>              : </span>
-<span id="L3"><span class="lineNum">       3</span>              : import &quot;fmt&quot;</span>
-<span id="L4"><span class="lineNum">       4</span>              : </span>
-<span id="L5"><span class="lineNum">       5</span>              : var SupportedContainerRuntimes = []string{</span>
-<span id="L6"><span class="lineNum">       6</span>              :         &quot;docker&quot;,</span>
-<span id="L7"><span class="lineNum">       7</span>              :         &quot;cri-o&quot;,</span>
-<span id="L8"><span class="lineNum">       8</span>              :         &quot;containerd&quot;,</span>
-<span id="L9"><span class="lineNum">       9</span>              : }</span>
-<span id="L10"><span class="lineNum">      10</span>              : </span>
-<span id="L11"><span class="lineNum">      11</span>              : type ContainerRuntimeBridge interface {</span>
-<span id="L12"><span class="lineNum">      12</span>              :         NeedsPid() bool</span>
-<span id="L13"><span class="lineNum">      13</span>              :         BuildInspectCommand(containerId string) []string</span>
-<span id="L14"><span class="lineNum">      14</span>              :         ExtractPid(inspection string) (*string, error)</span>
-<span id="L15"><span class="lineNum">      15</span>              :         BuildTcpdumpCommand(containerId *string, netInterface string, filter string, pid *string, socketPath string, tcpdumpImage string) []string</span>
-<span id="L16"><span class="lineNum">      16</span>              :         BuildCleanupCommand() []string</span>
-<span id="L17"><span class="lineNum">      17</span>              :         GetDefaultImage() string</span>
-<span id="L18"><span class="lineNum">      18</span>              :         GetDefaultTCPImage() string</span>
-<span id="L19"><span class="lineNum">      19</span>              :         GetDefaultSocketPath() string</span>
-<span id="L20"><span class="lineNum">      20</span>              : }</span>
-<span id="L21"><span class="lineNum">      21</span>              : </span>
-<span id="L22"><span class="lineNum">      22</span> <span class="tlaGNC">           6 : func NewContainerRuntimeBridge(runtimeName string) ContainerRuntimeBridge {</span></span>
-<span id="L23"><span class="lineNum">      23</span> <span class="tlaGNC">           6 :         switch runtimeName {</span></span>
-<span id="L24"><span class="lineNum">      24</span> <span class="tlaGNC">           2 :         case &quot;docker&quot;:</span></span>
-<span id="L25"><span class="lineNum">      25</span> <span class="tlaGNC">           2 :                 return NewDockerBridge()</span></span>
-<span id="L26"><span class="lineNum">      26</span> <span class="tlaGNC">           1 :         case &quot;cri-o&quot;:</span></span>
-<span id="L27"><span class="lineNum">      27</span> <span class="tlaGNC">           1 :                 return NewCrioBridge()</span></span>
-<span id="L28"><span class="lineNum">      28</span> <span class="tlaGNC">           2 :         case &quot;containerd&quot;:</span></span>
-<span id="L29"><span class="lineNum">      29</span> <span class="tlaGNC">           2 :                 return NewContainerdBridge()</span></span>
-<span id="L30"><span class="lineNum">      30</span> <span class="tlaGNC">           1 :         default:</span></span>
-<span id="L31"><span class="lineNum">      31</span> <span class="tlaGNC">           1 :                 panic(fmt.Sprintf(&quot;Unable to build bridge to %s&quot;, runtimeName))</span></span>
-<span id="L32"><span class="lineNum">      32</span>              :         }</span>
-<span id="L33"><span class="lineNum">      33</span>              : }</span>
-        </pre>
-              </td>
-            </tr>
-          </table>
-          <br>
-
-          <table width="100%" border=0 cellspacing=0 cellpadding=0>
-            <tr><td class="ruler"><img src="../glass.png" width=3 height=3 alt=""></td></tr>
-            <tr><td class="versionInfo">Generated by: <a href="https://github.com//linux-test-project/lcov" target="_parent">LCOV version 2.4-0</a></td></tr>
-          </table>
-          <br>
-
-</body>
-</html>
diff --git a/coverage_html/snow.png b/coverage_html/snow.png
deleted file mode 100644
index 2cdae107fceec6e7f02ac7acb4a34a82a540caa5..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 141
zcmeAS@N?(olHy`uVBq!ia0vp^j3CU&3?x-=hn)ga>?NMQuI!iC1^MM<OZU7F1qyK%
zctjR6FmMZjFyp1Wb$@_@Ea{HEjtmSN`?>!lvI6;R0X`wF|Ns97GD8ntt^-nBo-U3d
c6}OTTfNUlP#;5A{K>8RwUHx3vIVCg!071?oo&W#<

diff --git a/coverage_html/updown.png b/coverage_html/updown.png
deleted file mode 100644
index aa56a238b3e6c435265250f9266cd1b8caba0f20..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 117
zcmeAS@N?(olHy`uVBq!ia0vp^AT}Qd8;}%R+`Ae`*?77*hG?8mPH<rUzmOqzj$o`{
zmx{8oa+_1mG6n6lBg;7=4V4vL4GtVJNND(#r(##(!Bvp7XhP!+7e<DcG5TL0&E@|I
PG>5^{)z4*}Q$iB}huR`+


From 4c15f6ccca7d92d2ef6602f1e98fced9126bea63 Mon Sep 17 00:00:00 2001
From: Matt Long <mtl@cisco.com>
Date: Mon, 26 Jan 2026 10:02:00 +0100
Subject: [PATCH 3/5] Sync up with go dependency updates

---
 README_golang.md | 14 +++++++++++++
 go.mod           | 22 +++++++-------------
 go.sum           | 54 ++----------------------------------------------
 3 files changed, 23 insertions(+), 67 deletions(-)
 create mode 100644 README_golang.md

diff --git a/README_golang.md b/README_golang.md
new file mode 100644
index 0000000..79665b3
--- /dev/null
+++ b/README_golang.md
@@ -0,0 +1,14 @@
+# Go dependencies
+
+For the following commands its recommended to use the Bazel target `rules_go//go`, ensuring a consistent Go version.
+
+In order to add a dependency, you need to:
+1. add it to the global `go.mod` using `bazel run @rules_go//go -- get name@version`. To view the latest version, run `go list -m -versions name`.
+2. run `bazel run @rules_go//go -- mod tidy`.
+
+Since this will update dependencies for _all_ Go programs in the
+monorepo, you should retest all the Go dependencies afterwards:
+
+```
+bazel test $(bazel query 'kind(go_.*, //...) except attr("tags", "manual", //...)')
+```
diff --git a/go.mod b/go.mod
index be432c0..38b69f9 100644
--- a/go.mod
+++ b/go.mod
@@ -1,5 +1,7 @@
 module ksniff
 
+go 1.23
+
 require (
 	github.com/docker/spdystream v0.0.0-20181023171402-6480d4af844c // indirect
 	github.com/elazarl/goproxy v1.2.1 // indirect
@@ -11,12 +13,10 @@ require (
 	github.com/mitchellh/go-homedir v1.1.0
 	github.com/pkg/errors v0.9.1
 	github.com/sirupsen/logrus v1.8.3
-	github.com/spf13/cast v1.3.1 // indirect
 	github.com/spf13/cobra v1.1.3
 	github.com/spf13/pflag v1.0.5
 	github.com/spf13/viper v1.7.0
 	github.com/stretchr/testify v1.7.0
-	gopkg.in/ini.v1 v1.51.1 // indirect
 	k8s.io/api v0.20.6
 	k8s.io/apimachinery v0.20.6
 	k8s.io/cli-runtime v0.20.6
@@ -34,9 +34,6 @@ require (
 	github.com/PuerkitoBio/purell v1.1.1 // indirect
 	github.com/PuerkitoBio/urlesc v0.0.0-20170810143723-de5bf2ad4578 // indirect
 	github.com/davecgh/go-spew v1.1.1 // indirect
-	github.com/docker/spdystream v0.0.0-20181023171402-6480d4af844c // indirect
-	github.com/elazarl/goproxy v0.0.0-20181003060214-f58a169a71a5 // indirect
-	github.com/emicklei/go-restful v2.11.1+incompatible // indirect
 	github.com/evanphx/json-patch v4.9.0+incompatible // indirect
 	github.com/form3tech-oss/jwt-go v3.2.2+incompatible // indirect
 	github.com/fsnotify/fsnotify v1.4.9 // indirect
@@ -44,19 +41,14 @@ require (
 	github.com/go-logr/logr v0.2.0 // indirect
 	github.com/go-openapi/jsonpointer v0.19.3 // indirect
 	github.com/go-openapi/jsonreference v0.19.3 // indirect
-	github.com/go-openapi/spec v0.19.5 // indirect
-	github.com/go-openapi/swag v0.19.6 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.4.3 // indirect
 	github.com/google/btree v1.0.0 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/googleapis/gnostic v0.4.1 // indirect
-	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
 	github.com/hashicorp/hcl v1.0.0 // indirect
-	github.com/imdario/mergo v0.3.8 // indirect
 	github.com/inconshreveable/mousetrap v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.10 // indirect
-	github.com/konsorten/go-windows-terminal-sequences v1.0.2 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
 	github.com/magiconair/properties v1.8.1 // indirect
 	github.com/mailru/easyjson v0.7.0 // indirect
@@ -70,11 +62,11 @@ require (
 	github.com/spf13/cast v1.3.1 // indirect
 	github.com/spf13/jwalterweatherman v1.1.0 // indirect
 	github.com/subosito/gotenv v1.2.0 // indirect
-	golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0 // indirect
-	golang.org/x/net v0.0.0-20201110031124-69a78807bb2b // indirect
+	golang.org/x/crypto v0.31.0 // indirect
+	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
-	golang.org/x/sys v0.0.0-20201112073958-5cba982894dd // indirect
-	golang.org/x/text v0.3.4 // indirect
+	golang.org/x/sys v0.28.0 // indirect
+	golang.org/x/text v0.21.0 // indirect
 	golang.org/x/time v0.0.0-20200630173020-3af7569d3a1e // indirect
 	google.golang.org/appengine v1.6.5 // indirect
 	google.golang.org/protobuf v1.25.0 // indirect
@@ -90,4 +82,4 @@ require (
 	sigs.k8s.io/yaml v1.2.0 // indirect
 )
 
-go 1.17
+require golang.org/x/term v0.27.0 // indirect
diff --git a/go.sum b/go.sum
index d5bfb4f..f3ff6a0 100644
--- a/go.sum
+++ b/go.sum
@@ -157,9 +157,8 @@ github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMyw
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.5.2 h1:X2ev0eStA3AbceY54o37/0PQ/UWqKEiiO2dKL5OPaFM=
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
-github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -345,7 +344,6 @@ github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
 github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
-github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY=
 go.etcd.io/bbolt v1.3.2/go.mod h1:IbVyRI1SCnLcuJnV2u8VeU0CEYM7e686BmAb1XKL+uU=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
@@ -363,10 +361,6 @@ golang.org/x/crypto v0.0.0-20190611184440-5c40567a22f8/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20201002170205-7f63de1d35b0/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
-golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
-golang.org/x/crypto v0.13.0/go.mod h1:y6Z2r+Rw4iayiXXAIxJIDAJ1zMW4yaTpebo8fPOliYc=
-golang.org/x/crypto v0.19.0/go.mod h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
-golang.org/x/crypto v0.23.0/go.mod h1:CKFgDieR+mRhux2Lsu27y0fO304Db0wZe70UKqHu0v8=
 golang.org/x/crypto v0.31.0 h1:ihbySMvVjLAeSH1IbfcRTkD/iNscyz8rGzjF/E5hV6U=
 golang.org/x/crypto v0.31.0/go.mod h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
@@ -399,11 +393,6 @@ golang.org/x/mod v0.1.1-0.20191105210325-c90efee705ee/go.mod h1:QqPTAvyqsEbceGzB
 golang.org/x/mod v0.1.1-0.20191107180719-034126e5016b/go.mod h1:QqPTAvyqsEbceGzBzNggFXnrqF1CaUcvgkdR5Ot7KZg=
 golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
 golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA=
-golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4=
-golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.12.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs=
-golang.org/x/mod v0.15.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
-golang.org/x/mod v0.17.0/go.mod h1:hTbmBsO62+eylJbnUtE2MGJUyE7QWk4xUqPFrRgJ+7c=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180906233101-161cd47e91fd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
@@ -431,13 +420,6 @@ golang.org/x/net v0.0.0-20200301022130-244492dfa37a/go.mod h1:z5CRVTTTmAJ677TzLL
 golang.org/x/net v0.0.0-20200324143707-d3edc9973b7e/go.mod h1:qpuaurCH72eLCgpAm/N6yyVIVM9cpaDIP3A8BGJEC5A=
 golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
 golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU=
-golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg=
-golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
-golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs=
-golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg=
-golang.org/x/net v0.15.0/go.mod h1:idbUs1IY1+zTqbi8yxTbhexhEEk5ur9LInksu6HrEpk=
-golang.org/x/net v0.21.0/go.mod h1:bIjVDfnllIU7BJ2DNgfnXvpSvtn8VRwhlsaeUTyUS44=
-golang.org/x/net v0.25.0/go.mod h1:JkAGAh7GEvH74S6FOH42FLoXpXbE/aqXSrIQjXgsiwM=
 golang.org/x/net v0.33.0 h1:74SYHlV8BIgHIFC/LrYkOGIwL19eTYXQ5wc6TBuO36I=
 golang.org/x/net v0.33.0/go.mod h1:HXLR5J+9DxmrqMwG9qjGCxZ+zKXxBru04zlTvWlWuN4=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
@@ -453,12 +435,6 @@ golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJ
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.3.0/go.mod h1:FU7BRWz2tNW+3quACPkgCx/L+uEAv1htQ0V83Z9Rj+Y=
-golang.org/x/sync v0.6.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sync v0.7.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
-golang.org/x/sync v0.10.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
 golang.org/x/sys v0.0.0-20180823144017-11551d06cbcc/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20180905080454-ebe1bf3edb33/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -488,26 +464,9 @@ golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201112073958-5cba982894dd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.20.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
 golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/telemetry v0.0.0-20240228155512-f48c80bd79b2/go.mod h1:TeRTkGYfJXctD9OcfyVLyj2J3IxLnKwHJR8f4D8a3YE=
-golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
-golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
-golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
-golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
-golang.org/x/term v0.12.0/go.mod h1:owVbMEjm3cBLCHdkQu9b1opXd4ETQWc3BhuQGKgXgvU=
-golang.org/x/term v0.17.0/go.mod h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
-golang.org/x/term v0.20.0/go.mod h1:8UkIAJTvZgivsXaD6/pH6U9ecQzZ45awqEOzuCvwpFY=
 golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
 golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -516,12 +475,6 @@ golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ=
-golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
-golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
-golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE=
-golang.org/x/text v0.14.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
-golang.org/x/text v0.15.0/go.mod h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
 golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
 golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -565,13 +518,10 @@ golang.org/x/tools v0.0.0-20200224181240-023911ca70b2/go.mod h1:TB2adYChydJhpapK
 golang.org/x/tools v0.0.0-20200304193943-95d2e580d8eb/go.mod h1:o4KQGtdN14AW+yjsvvwRTJJuXz8XRtIHtEnmAXLyFUw=
 golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE=
 golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA=
-golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc=
-golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU=
-golang.org/x/tools v0.13.0/go.mod h1:HvlwmtVNQAhOuCjW7xxvovg8wbNq7LwfXh/k7wXUl58=
-golang.org/x/tools v0.21.1-0.20240508182429-e35e4ccd0d2d/go.mod h1:aiJjzUbINMkxbQROHiO6hDPo2LHcIPhhQsa9DLh0yGk=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
+golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=

From a345d4000f0299c14344a6366283e5bf3e7620a3 Mon Sep 17 00:00:00 2001
From: Matt Long <mtl@cisco.com>
Date: Mon, 26 Jan 2026 11:17:40 +0100
Subject: [PATCH 4/5] [sniff] Update sniff with better exit handling and
 explicit image pull secret flag

---
 .pre-commit-config.yaml                       | 88 +++++++++++++++++++
 README.md                                     | 29 +++---
 go.mod                                        | 49 ++++++-----
 go.sum                                        | 87 ++++++++++--------
 kube/kubernetes_api_service.go                | 12 ++-
 pkg/cmd/sniff.go                              | 58 +++++++-----
 pkg/cmd/sniff_test.go                         | 19 ++++
 pkg/config/settings.go                        |  1 +
 .../sniffer/privileged_pod_sniffer_service.go |  1 +
 9 files changed, 250 insertions(+), 94 deletions(-)
 create mode 100644 .pre-commit-config.yaml

diff --git a/.pre-commit-config.yaml b/.pre-commit-config.yaml
new file mode 100644
index 0000000..2fc4045
--- /dev/null
+++ b/.pre-commit-config.yaml
@@ -0,0 +1,88 @@
+# Copyright (C) 2021 Cisco Systems, Inc.
+
+# See CONTRIBUTING.md for instructions.
+# See https://pre-commit.com for more information
+# See https://pre-commit.com/hooks.html for more hooks
+#
+# Hook naming convention - prefixes by category (run order):
+#   Format:  - Code formatters that modify files
+#   Deps:    - Dependency/lockfile hygiene (go mod tidy, pip-compile, tfupdate)
+#   Lint:    - Static analysis/linting (read-only checks)
+#   Files:   - File hygiene checks (whitespace, symlinks, text normalization)
+#   License: - Copyright/license checks
+#   SAST:    - Security static analysis (secrets, config scanning, code analysis)
+#   Vuln:    - Dependency vulnerability scanning
+
+repos:
+  # ============================================================================
+  # FORMAT: Code formatters (modify files)
+  # ============================================================================
+  - repo: https://github.com/keith/pre-commit-buildifier
+    rev: 8.2.1
+    hooks:
+      - id: buildifier
+        name: "Format: buildifier"
+        args:
+          # Keep this argument in sync with .bazelci/presubmit.yml and the buildifier-lint hook in LINT section
+          - --warnings=-bzl-visibility,-function-docstring-args,-function-docstring-return,-print,-unnamed-macro,-provider-params,-function-docstring-header,-no-effect,-uninitialized,-rule-impl-return
+
+  # ============================================================================
+  # LINT: Static analysis (read-only checks)
+  # ============================================================================
+  - repo: https://github.com/keith/pre-commit-buildifier
+    rev: 8.2.1
+    hooks:
+      - id: buildifier-lint
+        name: "Lint: buildifier-lint"
+        args:
+          # Keep this argument in sync with the buildifier hook in FORMAT section
+          - --warnings=-bzl-visibility,-function-docstring-args,-function-docstring-return,-print,-unnamed-macro,-provider-params,-function-docstring-header,-no-effect,-uninitialized,-rule-impl-return
+
+  - repo: https://github.com/syntaqx/git-hooks
+    rev: v0.0.18
+    hooks:
+      - id: shellcheck
+        name: "Lint: shellcheck"
+        exclude: "aws_launch_template_.*"
+
+  - repo: git@github.com:omnicate/pre-commit-policy-bot.git
+    rev: v0.0.2
+    hooks:
+      - id: validate
+        name: "Lint: policy-bot-validate"
+
+  # ============================================================================
+  # FILES: File hygiene checks
+  # ============================================================================
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v6.0.0
+    hooks:
+      - id: trailing-whitespace
+        name: "Files: trailing-whitespace"
+        args: [--markdown-linebreak-ext=md]
+        # provisioning-tools has test fixtures with significant formatting
+        exclude: "connectivity/provisioning-tools/src/test/kotlin/io/omnicate/connectivity/tools/(ImportSimCardsTest|mvno/MappingTest).kt"
+      - id: check-merge-conflict
+        name: "Files: check-merge-conflict"
+      - id: end-of-file-fixer
+        name: "Files: end-of-file-fixer"
+        exclude: ".*\\.svg$|voice/li/test/data/.*\\.bin$|copyright.txt|vendor-images/README.md"
+      - id: check-executables-have-shebangs
+        name: "Files: check-executables-have-shebangs"
+      - id: check-shebang-scripts-are-executable
+        name: "Files: check-shebang-scripts-are-executable"
+        exclude: "aws_launch_template_.*"
+      - id: check-symlinks
+        name: "Files: check-symlinks"
+      - id: destroyed-symlinks
+        name: "Files: destroyed-symlinks"
+
+  - repo: https://github.com/sirosen/texthooks
+    rev: 0.7.1
+    hooks:
+      - id: fix-smartquotes
+        name: "Files: fix-smartquotes"
+        exclude: ".+\\.vue$|.+\\.vm|.+\\.java|.+\\.kt|.+\\.xml|.+\\.json|.+\\.sql|.*.gen.go$"
+      - id: fix-ligatures
+        name: "Files: fix-ligatures"
+        exclude: ".+\\.vue$|.+\\.vm|.+\\.java|.+\\.kt|.+\\.xml|.+\\.json|.+\\.sql|.*.gen.go$"
diff --git a/README.md b/README.md
index 3cf50c5..07e01ba 100644
--- a/README.md
+++ b/README.md
@@ -25,8 +25,8 @@ Ksniff [isn't production ready yet](https://github.com/eldadru/ksniff/issues/96#
 Installation via krew (https://github.com/GoogleContainerTools/krew)
 
     kubectl krew install sniff
-    
-For manual installation, download the latest release package, unzip it and use the attached makefile:  
+
+For manual installation, download the latest release package, unzip it and use the attached makefile:
 
     unzip ksniff.zip
     make install
@@ -42,11 +42,11 @@ Requirements:
 2. go 1.11 or newer
 
 Compiling:
- 
+
     linux:      make linux
     windows:    make windows
     mac:        make darwin
- 
+
 
 To compile a static tcpdump binary:
 
@@ -56,10 +56,10 @@ To compile a static tcpdump binary:
 
     kubectl < 1.12:
     kubectl plugin sniff <POD_NAME> [-n <NAMESPACE_NAME>] [-c <CONTAINER_NAME>] [-i <INTERFACE_NAME>] [-f <CAPTURE_FILTER>] [-o OUTPUT_FILE] [-l LOCAL_TCPDUMP_FILE] [-r REMOTE_TCPDUMP_FILE]
-    
+
     kubectl >= 1.12:
     kubectl sniff <POD_NAME> [-n <NAMESPACE_NAME>] [-c <CONTAINER_NAME>] [-i <INTERFACE_NAME>] [-f <CAPTURE_FILTER>] [-o OUTPUT_FILE] [-l LOCAL_TCPDUMP_FILE] [-r REMOTE_TCPDUMP_FILE]
-    
+
     POD_NAME: Required. the name of the kubernetes pod to start capture it's traffic.
     NAMESPACE_NAME: Optional. Namespace name. used to specify the target namespace to operate on.
     CONTAINER_NAME: Optional. If omitted, the first container in the pod will be chosen.
@@ -71,9 +71,16 @@ To compile a static tcpdump binary:
 
 #### Air gapped environments
 Use `--image` and `--tcpdump-image` flags (or KUBECTL_PLUGINS_LOCAL_FLAG_IMAGE and KUBECTL_PLUGINS_LOCAL_FLAG_TCPDUMP_IMAGE environment variables) to override the default container images and use your own e.g (docker):
-  
+
     kubectl plugin sniff <POD_NAME> [-n <NAMESPACE_NAME>] [-c <CONTAINER_NAME>] --image <PRIVATE_REPO>/docker --tcpdump-image <PRIVATE_REPO>/tcpdump
-   
+
+#### Private registry with imagePullSecret
+If your custom images are stored in a private registry that requires authentication, you can specify an imagePullSecret using the `--image-pull-secret` flag (or KUBECTL_PLUGINS_LOCAL_FLAG_IMAGE_PULL_SECRET environment variable):
+
+    kubectl plugin sniff <POD_NAME> [-n <NAMESPACE_NAME>] [-c <CONTAINER_NAME>] --image <PRIVATE_REPO>/docker --tcpdump-image <PRIVATE_REPO>/tcpdump --image-pull-secret <SECRET_NAME>
+
+The secret must exist in the same namespace where the ksniff privileged pod will be created.
+
 
 #### Non-Privileged and Scratch Pods
 To reduce attack surface and have small and lean containers, many production-ready containers runs as non-privileged user
@@ -82,7 +89,7 @@ or even as a scratch container.
 To support those containers as well, ksniff now ships with the "-p" (privileged) mode.
 When executed with the -p flag, ksniff will create a new pod on the remote kubernetes cluster that will have access to the node docker daemon.
 
-ksniff will than use that pod to execute a container attached to the target container network namespace 
+ksniff will than use that pod to execute a container attached to the target container network namespace
 and perform the actual network capture.
 
 #### Piping output to stdout
@@ -94,12 +101,12 @@ Example using `tshark`:
     kubectl sniff pod-name -f "port 80" -o - | tshark -r -
 
 ### Contribution
-More than welcome! please don't hesitate to open bugs, questions, pull requests 
+More than welcome! please don't hesitate to open bugs, questions, pull requests
 
 ### Future Work
 1. Instead of uploading static tcpdump, use the future support of "kubectl debug" feature
  (https://github.com/kubernetes/community/pull/649) which should be a much cleaner solution.
- 
+
 ### Known Issues
 
 #### Wireshark and TShark cannot read pcap
diff --git a/go.mod b/go.mod
index 38b69f9..7468dc2 100644
--- a/go.mod
+++ b/go.mod
@@ -1,22 +1,22 @@
 module ksniff
 
-go 1.23
+go 1.23.0
+
+toolchain go1.23.4
 
 require (
 	github.com/docker/spdystream v0.0.0-20181023171402-6480d4af844c // indirect
-	github.com/elazarl/goproxy v1.2.1 // indirect
-	github.com/emicklei/go-restful v2.16.0+incompatible // indirect
 	github.com/go-openapi/spec v0.19.5 // indirect
 	github.com/go-openapi/swag v0.19.6 // indirect
 	github.com/gregjones/httpcache v0.0.0-20190611155906-901d90724c79 // indirect
 	github.com/imdario/mergo v0.3.8 // indirect
 	github.com/mitchellh/go-homedir v1.1.0
 	github.com/pkg/errors v0.9.1
-	github.com/sirupsen/logrus v1.8.3
-	github.com/spf13/cobra v1.1.3
-	github.com/spf13/pflag v1.0.5
-	github.com/spf13/viper v1.7.0
-	github.com/stretchr/testify v1.7.0
+	github.com/sirupsen/logrus v1.9.4
+	github.com/spf13/cobra v1.10.2
+	github.com/spf13/pflag v1.0.10
+	github.com/spf13/viper v1.21.0
+	github.com/stretchr/testify v1.11.1
 	k8s.io/api v0.20.6
 	k8s.io/apimachinery v0.20.6
 	k8s.io/cli-runtime v0.20.6
@@ -36,44 +36,43 @@ require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/evanphx/json-patch v4.9.0+incompatible // indirect
 	github.com/form3tech-oss/jwt-go v3.2.2+incompatible // indirect
-	github.com/fsnotify/fsnotify v1.4.9 // indirect
+	github.com/fsnotify/fsnotify v1.9.0 // indirect
 	github.com/ghodss/yaml v1.0.0 // indirect
 	github.com/go-logr/logr v0.2.0 // indirect
 	github.com/go-openapi/jsonpointer v0.19.3 // indirect
 	github.com/go-openapi/jsonreference v0.19.3 // indirect
+	github.com/go-viper/mapstructure/v2 v2.4.0 // indirect
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang/protobuf v1.4.3 // indirect
 	github.com/google/btree v1.0.0 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
 	github.com/googleapis/gnostic v0.4.1 // indirect
-	github.com/hashicorp/hcl v1.0.0 // indirect
-	github.com/inconshreveable/mousetrap v1.0.0 // indirect
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
 	github.com/json-iterator/go v1.1.10 // indirect
 	github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de // indirect
-	github.com/magiconair/properties v1.8.1 // indirect
 	github.com/mailru/easyjson v0.7.0 // indirect
-	github.com/mitchellh/mapstructure v1.1.2 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.1 // indirect
-	github.com/pelletier/go-toml v1.6.0 // indirect
+	github.com/pelletier/go-toml/v2 v2.2.4 // indirect
 	github.com/peterbourgon/diskv v2.0.1+incompatible // indirect
 	github.com/pmezard/go-difflib v1.0.0 // indirect
-	github.com/spf13/afero v1.2.2 // indirect
-	github.com/spf13/cast v1.3.1 // indirect
-	github.com/spf13/jwalterweatherman v1.1.0 // indirect
-	github.com/subosito/gotenv v1.2.0 // indirect
+	github.com/sagikazarmark/locafero v0.11.0 // indirect
+	github.com/sourcegraph/conc v0.3.1-0.20240121214520-5f936abd7ae8 // indirect
+	github.com/spf13/afero v1.15.0 // indirect
+	github.com/spf13/cast v1.10.0 // indirect
+	github.com/subosito/gotenv v1.6.0 // indirect
+	go.yaml.in/yaml/v3 v3.0.4 // indirect
 	golang.org/x/crypto v0.31.0 // indirect
 	golang.org/x/net v0.33.0 // indirect
 	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d // indirect
-	golang.org/x/sys v0.28.0 // indirect
-	golang.org/x/text v0.21.0 // indirect
+	golang.org/x/sys v0.29.0 // indirect
+	golang.org/x/text v0.28.0 // indirect
 	golang.org/x/time v0.0.0-20200630173020-3af7569d3a1e // indirect
 	google.golang.org/appengine v1.6.5 // indirect
 	google.golang.org/protobuf v1.25.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
-	gopkg.in/ini.v1 v1.51.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
-	gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/klog/v2 v2.4.0 // indirect
 	k8s.io/kube-openapi v0.0.0-20201113171705-d219536bb9fd // indirect
 	k8s.io/utils v0.0.0-20201110183641-67b214c5f920 // indirect
@@ -82,4 +81,8 @@ require (
 	sigs.k8s.io/yaml v1.2.0 // indirect
 )
 
-require golang.org/x/term v0.27.0 // indirect
+require (
+	github.com/elazarl/goproxy v1.2.1 // indirect
+	github.com/emicklei/go-restful v2.16.0+incompatible // indirect
+	golang.org/x/term v0.27.0 // indirect
+)
diff --git a/go.sum b/go.sum
index f3ff6a0..d5d44fa 100644
--- a/go.sum
+++ b/go.sum
@@ -39,7 +39,6 @@ github.com/Azure/go-autorest/logger v0.2.0 h1:e4RVHVZKC5p6UANLJHkM4OfR1UKZPj8Wt8
 github.com/Azure/go-autorest/logger v0.2.0/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZmbF5NWuPV8+WeEW8=
 github.com/Azure/go-autorest/tracing v0.6.0 h1:TYi4+3m5t6K48TGI9AUdb+IzbnSxvnvUMfuitfgcfuo=
 github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
-github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/NYTimes/gziphandler v0.0.0-20170623195520-56545f4a5d46/go.mod h1:3wb06e3pkSAbeQ52E9H9iFoQsEEwGN64994WTCIhntQ=
@@ -70,6 +69,7 @@ github.com/coreos/go-semver v0.3.0/go.mod h1:nnelYz7RCh+5ahJtPPxZlU+153eP4D4r3Ee
 github.com/coreos/go-systemd v0.0.0-20190321100706-95778dfbb74e/go.mod h1:F5haX7vjVVG0kc13fIWeqUViNPyEJxv/OmvnBo0Yme4=
 github.com/coreos/pkg v0.0.0-20180928190104-399ea9e2e55f/go.mod h1:E3G3o1h8I7cfcXa63jLwjI0eiQQMgzzUDFVpN/nH/eA=
 github.com/cpuguy83/go-md2man/v2 v2.0.0/go.mod h1:maD7wRr/U5Z6m/iR4s+kqSMx2CaBsrgA7czyZG/E6dU=
+github.com/cpuguy83/go-md2man/v2 v2.0.6/go.mod h1:oOW0eioCTA6cOiMLiUPZOpcVxMig6NIQQ7OS05n1F4g=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
@@ -93,9 +93,12 @@ github.com/evanphx/json-patch v4.9.0+incompatible/go.mod h1:50XU6AFN0ol/bzJsmQLi
 github.com/fatih/color v1.7.0/go.mod h1:Zm6kSWBoL9eyXnKyktHP6abPY2pDugNf5KwzbycvMj4=
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible h1:TcekIExNqud5crz4xD2pavyTgWiPvpYe4Xau31I0PRk=
 github.com/form3tech-oss/jwt-go v3.2.2+incompatible/go.mod h1:pbq4aXjuKjdthFRnoDwaVPLA+WlJuPGy+QneDUgJi2k=
+github.com/frankban/quicktest v1.14.6 h1:7Xjx+VpznH+oBnejlPUj8oUpdxnVs4f8XU8WnHkI4W8=
+github.com/frankban/quicktest v1.14.6/go.mod h1:4ptaffx2x8+WTWXmUCuVU6aPUX1/Mz7zb5vbUoiM6w0=
 github.com/fsnotify/fsnotify v1.4.7/go.mod h1:jwhsz4b93w/PPRr/qN1Yymfu8t87LnFCMoQvtojpjFo=
-github.com/fsnotify/fsnotify v1.4.9 h1:hsms1Qyu0jgnwNXIxa+/V/PDsU6CfLf6CNO8H7IWoS4=
 github.com/fsnotify/fsnotify v1.4.9/go.mod h1:znqG4EE+3YCdAaPaxE2ZRY/06pZUdp0tY4IgpuI1SZQ=
+github.com/fsnotify/fsnotify v1.9.0 h1:2Ml+OJNzbYCTzsxtv8vKSFD9PbJjmhYF14k/jKC7S9k=
+github.com/fsnotify/fsnotify v1.9.0/go.mod h1:8jBTzvmWwFyi3Pb8djgCCO5IBqzKJ/Jwo8TRcHyHii0=
 github.com/ghodss/yaml v0.0.0-20150909031657-73d445a93680/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
 github.com/ghodss/yaml v1.0.0 h1:wQHKEahhL6wmXdzwWG11gIVCkOv05bNOh+Rxn0yngAk=
 github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04=
@@ -122,6 +125,8 @@ github.com/go-openapi/swag v0.19.5/go.mod h1:POnQmlKehdgb5mhVOsnJFsivZCEZ/vjK9gh
 github.com/go-openapi/swag v0.19.6 h1:JSUbVWlaTLMhXeOMyArSUNCdroxZu2j1TcrsOV8Mj7Q=
 github.com/go-openapi/swag v0.19.6/go.mod h1:ao+8BpOPyKdpQz3AOJfbeEVpLmWAvlT1IfTe5McPyhY=
 github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY=
+github.com/go-viper/mapstructure/v2 v2.4.0 h1:EBsztssimR/CONLSZZ04E8qAkxNYq4Qp9LvH92wZUgs=
+github.com/go-viper/mapstructure/v2 v2.4.0/go.mod h1:oJDH3BJKyqBA2TXFhDsKDGDTlndYOZ6rGS0BRZIxGhM=
 github.com/gogo/protobuf v1.1.1/go.mod h1:r8qH/GZQm5c6nD/R0oafs1akxWv10x8SbQlK7atdtwQ=
 github.com/gogo/protobuf v1.2.1/go.mod h1:hp+jE20tsWTFYpLwKvXlhS1hjn+gTNwPg2I6zVXpSg4=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=
@@ -157,8 +162,9 @@ github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMyw
 github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
-github.com/google/go-cmp v0.5.2 h1:X2ev0eStA3AbceY54o37/0PQ/UWqKEiiO2dKL5OPaFM=
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
+github.com/google/go-cmp v0.6.0 h1:ofyhxvXcZhMsU5ulbFiLKl/XBFqE1GSq7atu8tAmTRI=
+github.com/google/go-cmp v0.6.0/go.mod h1:17dUlkBOakJ0+DkrSSNjCkIjxS6bF9zb3elmeNGIjoY=
 github.com/google/gofuzz v1.0.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
 github.com/google/gofuzz v1.1.0 h1:Hsa8mG0dQ46ij8Sl2AYJDUv1oA9/d6Vk+3LG99Oe02g=
 github.com/google/gofuzz v1.1.0/go.mod h1:dBl0BpW6vV/+mYPU4Po3pmUjxk6FQPldtuIdl/M65Eg=
@@ -175,7 +181,6 @@ github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/googleapis/gnostic v0.4.1 h1:DLJCy1n/vrD4HPjOvYcT8aYQXpPIzoRZONaYwyycI+I=
 github.com/googleapis/gnostic v0.4.1/go.mod h1:LRhVm6pbyptWbWbuZ38d1eyptfvIytN3ir6b65WBswg=
-github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1 h1:EGx4pi6eqNxGaHF6qqu48+N2wcFQ5qg5FXgOdqsJ5d8=
 github.com/gopherjs/gopherjs v0.0.0-20181017120253-0766667cb4d1/go.mod h1:wJfORRmW1u3UXTncJ5qlYoELFm8eSnnEO6hX4iZ3EWY=
 github.com/gorilla/websocket v1.4.2/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
 github.com/gregjones/httpcache v0.0.0-20180305231024-9cad4c3443a7/go.mod h1:FecbI9+v66THATjSRHfNgh1IVFe/9kFxbXtjV0ctIMA=
@@ -199,7 +204,6 @@ github.com/hashicorp/go-uuid v1.0.1/go.mod h1:6SBZvOh/SIDV7/2o3Jml5SYk/TvGqwFJ/b
 github.com/hashicorp/go.net v0.0.1/go.mod h1:hjKkEWcCURg++eb33jQU7oqQcI9XDCnUzHA0oac0k90=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
-github.com/hashicorp/hcl v1.0.0 h1:0Anlzjpi4vEasTeNFn2mLJgTSwt0+6sfsiTG8qcWGx4=
 github.com/hashicorp/hcl v1.0.0/go.mod h1:E5yfLk+7swimpb2L/Alb/PJmXilQ/rhwaUYs4T20WEQ=
 github.com/hashicorp/logutils v1.0.0/go.mod h1:QIAnNjmIWmVIIkWDTG1z5v++HQmx9WQRO+LraFDTW64=
 github.com/hashicorp/mdns v1.0.0/go.mod h1:tL+uN++7HEJ6SQLQ2/p+z2pH24WQKWjBPkE0mNTz8vQ=
@@ -211,15 +215,15 @@ github.com/ianlancetaylor/demangle v0.0.0-20181102032728-5e5cf60278f6/go.mod h1:
 github.com/imdario/mergo v0.3.5/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
 github.com/imdario/mergo v0.3.8 h1:CGgOkSJeqMRmt0D9XLWExdT4m4F1vd3FV3VPt+0VxkQ=
 github.com/imdario/mergo v0.3.8/go.mod h1:2EnlNZ0deacrJVfApfmtdGgDfMuh/nq6Ok1EcJh5FfA=
-github.com/inconshreveable/mousetrap v1.0.0 h1:Z8tu5sraLXCXIcARxBp/8cbvlwVa7Z1NHg9XEKhtSvM=
 github.com/inconshreveable/mousetrap v1.0.0/go.mod h1:PxqpIevigyE2G7u3NXJIT2ANytuPF1OarO4DADm73n8=
+github.com/inconshreveable/mousetrap v1.1.0 h1:wN+x4NVGpMsO7ErUn/mUI3vEoE6Jt13X2s0bqwp9tc8=
+github.com/inconshreveable/mousetrap v1.1.0/go.mod h1:vpF70FUmC8bwa3OWnCshd2FqLfsEA9PFc4w1p2J65bw=
 github.com/jonboulle/clockwork v0.1.0/go.mod h1:Ii8DK3G1RaLaWxj9trq07+26W01tbo22gdxWY5EU2bo=
 github.com/json-iterator/go v1.1.6/go.mod h1:+SdeFBvtyEkXs7REEP0seUULqWtbJapLOCVDaaPEHmU=
 github.com/json-iterator/go v1.1.10 h1:Kz6Cvnvv2wGdaG/V8yMvfkmNiXq9Ya2KUv4rouJJr68=
 github.com/json-iterator/go v1.1.10/go.mod h1:KdQUCv79m/52Kvf8AW2vK1V8akMuk1QjK/uOdHXbAo4=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
-github.com/jtolds/gls v4.20.0+incompatible h1:xdiiI2gbIgH/gLH7ADydsJ1uDOEzR8yvV7C0MuV77Wo=
 github.com/jtolds/gls v4.20.0+incompatible/go.mod h1:QJZ7F/aHp+rZTRtaJ1ow/lLfFfVYBRgL+9YlvaHOwJU=
 github.com/julienschmidt/httprouter v1.2.0/go.mod h1:SYymIcj16QtmaHHD7aYtjjsJG7VTCxuUUipMqKk8s4w=
 github.com/kisielk/errcheck v1.1.0/go.mod h1:EZBBE59ingxPouuu3KfxchcWSUPOHkagtvWXihfKN4Q=
@@ -228,15 +232,16 @@ github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+o
 github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ=
 github.com/kr/logfmt v0.0.0-20140226030751-b84e30acd515/go.mod h1:+0opPa2QZZtGFBFZlji/RkVcI2GknAs/DXo4wKdlNEc=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
-github.com/kr/pretty v0.2.0 h1:s5hAObm+yFO5uHYt5dYjxi2rXrsnmRpJx4OYvIWUaQs=
 github.com/kr/pretty v0.2.0/go.mod h1:ipq/a2n7PKx3OHsz4KJII5eveXtPO4qwEXGdVfWzfnI=
+github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE=
+github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/pty v1.1.5/go.mod h1:9r2w37qlBe7rQ6e1fg1S/9xpWHSnaqNdHD3WcMdbPDA=
-github.com/kr/text v0.1.0 h1:45sCR5RtlFHMR4UwH9sdQ5TC8v0qDQCHnXt+kaKSTVE=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
+github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY=
+github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de h1:9TO3cAIGXtEhnIaL+V+BEER86oLrvS+kWobKpbJuye0=
 github.com/liggitt/tabwriter v0.0.0-20181228230101-89fcab3d43de/go.mod h1:zAbeS9B/r2mtpb6U+EI2rYA5OAXxsYw6wTamcNW+zcE=
-github.com/magiconair/properties v1.8.1 h1:ZC2Vc7/ZFkGmsVC9KvOjumD+G5lXy2RtTKyzRKO2BQ4=
 github.com/magiconair/properties v1.8.1/go.mod h1:PppfXfuXeibc/6YijjN8zIbojt8czPbwD3XqdrwzmxQ=
 github.com/mailru/easyjson v0.0.0-20190614124828-94de47d64c63/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
 github.com/mailru/easyjson v0.0.0-20190626092158-b2ccc519800e/go.mod h1:C1wdFJiN94OJF2b5HbByQZoLdCWB1Yqtg26g4irojpc=
@@ -254,7 +259,6 @@ github.com/mitchellh/go-testing-interface v1.0.0/go.mod h1:kRemZodwjscx+RGhAo8eI
 github.com/mitchellh/gox v0.4.0/go.mod h1:Sd9lOJ0+aimLBi73mGofS1ycjY8lL3uZM3JPS42BGNg=
 github.com/mitchellh/iochan v1.0.0/go.mod h1:JwYml1nuB7xOzsp52dPpHFffvOCDupsG0QubkSMEySY=
 github.com/mitchellh/mapstructure v0.0.0-20160808181253-ca63d7c062ee/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
-github.com/mitchellh/mapstructure v1.1.2 h1:fmNYVwqnSfB9mZU6OS2O6GsXM+wcskZDuKQzvN1EDeE=
 github.com/mitchellh/mapstructure v1.1.2/go.mod h1:FVVH3fgwuzCH5S8UJGiWEs2h04kUh9fWfEaFds41c1Y=
 github.com/modern-go/concurrent v0.0.0-20180228061459-e0a39a4cb421/go.mod h1:6dJC0mAP4ikYIbvyc7fijjWJddQyLn8Ig3JB5CqoB9Q=
 github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd h1:TRLaZ9cD/w8PVh93nsPXa1VrQ6jlwL5oN8l14QlcNfg=
@@ -275,8 +279,8 @@ github.com/onsi/gomega v1.7.0 h1:XPnZz8VVBHjVsy1vzJmRwIcSwiUO+JFfrv/xGiigmME=
 github.com/onsi/gomega v1.7.0/go.mod h1:ex+gbHU/CVuBBDIJjb2X0qEXbFg53c61hWP/1CpauHY=
 github.com/pascaldekloe/goe v0.0.0-20180627143212-57f6aae5913c/go.mod h1:lzWF7FIEvWOWxwDKqyGYQf6ZUaNfKdP144TG7ZOy1lc=
 github.com/pelletier/go-toml v1.2.0/go.mod h1:5z9KED0ma1S8pY6P1sdut58dfprrGBbd/94hg7ilaic=
-github.com/pelletier/go-toml v1.6.0 h1:aetoXYr0Tv7xRU/V4B4IZJ2QcbtMUFoNb3ORp7TzIK4=
-github.com/pelletier/go-toml v1.6.0/go.mod h1:5N711Q9dKgbdkxHL+MEfF31hpT7l0S0s/t2kKREewys=
+github.com/pelletier/go-toml/v2 v2.2.4 h1:mye9XuhQ6gvn5h28+VilKrrPoQVanw5PMw/TB0t5Ec4=
+github.com/pelletier/go-toml/v2 v2.2.4/go.mod h1:2gIqNv+qfxSVS7cM2xJQKtLSTLUE9V8t9Stt+h56mCY=
 github.com/peterbourgon/diskv v2.0.1+incompatible h1:UBdAOUP5p4RWqPBg048CAvpKN+vxiaj6gdUUzhl4XmI=
 github.com/peterbourgon/diskv v2.0.1+incompatible/go.mod h1:uqqh8zWWbv1HBMNONnaR/tNboyR3/BZd58JJSHlUSCU=
 github.com/pkg/errors v0.8.0/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0=
@@ -298,37 +302,44 @@ github.com/prometheus/procfs v0.0.0-20190507164030-5867b95ac084/go.mod h1:TjEm7z
 github.com/prometheus/tsdb v0.7.1/go.mod h1:qhTCs0VvXwvX/y3TZrWD7rabWM+ijKTux40TwIPHuXU=
 github.com/rogpeppe/fastuuid v0.0.0-20150106093220-6724a57986af/go.mod h1:XWv6SoW27p1b0cqNHllgS5HIMJraePCO15w5zCzIWYg=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
+github.com/rogpeppe/go-internal v1.9.0 h1:73kH8U+JUqXU8lRuOHeVHaa/SZPifC7BkcraZVejAe8=
+github.com/rogpeppe/go-internal v1.9.0/go.mod h1:WtVeX8xhTBvf0smdhujwtBcq4Qrzq/fJaraNFVN+nFs=
 github.com/russross/blackfriday/v2 v2.0.1/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
+github.com/russross/blackfriday/v2 v2.1.0/go.mod h1:+Rmxgy9KzJVeS9/2gXHxylqXiyQDYRxCVz55jmeOWTM=
 github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb6uqfes/u+d4ooFouqFdy9/2g9QGwK3SQygK0Ts=
+github.com/sagikazarmark/locafero v0.11.0 h1:1iurJgmM9G3PA/I+wWYIOw/5SyBtxapeHDcg+AAIFXc=
+github.com/sagikazarmark/locafero v0.11.0/go.mod h1:nVIGvgyzw595SUSUE6tvCp3YYTeHs15MvlmU87WwIik=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
 github.com/sirupsen/logrus v1.2.0/go.mod h1:LxeOpSwHxABJmUn/MG1IvRgCAasNZTLOkJPxbbu5VWo=
-github.com/sirupsen/logrus v1.8.3 h1:DBBfY8eMYazKEJHb3JKpSPfpgd2mBCoNFlQx6C5fftU=
-github.com/sirupsen/logrus v1.8.3/go.mod h1:naHLuLoDiP4jHNo9R0sCBMtWGeIprob74mVsIT4qYEQ=
-github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d h1:zE9ykElWQ6/NYmHa3jpm/yHnI4xSofP+UP6SpjHcSeM=
+github.com/sirupsen/logrus v1.9.4 h1:TsZE7l11zFCLZnZ+teH4Umoq5BhEIfIzfRDZ1Uzql2w=
+github.com/sirupsen/logrus v1.9.4/go.mod h1:ftWc9WdOfJ0a92nsE2jF5u5ZwH8Bv2zdeOC42RjbV2g=
 github.com/smartystreets/assertions v0.0.0-20180927180507-b2de0cb4f26d/go.mod h1:OnSkiWE9lh6wB0YB77sQom3nweQdgAjqCqsofrRNTgc=
-github.com/smartystreets/goconvey v1.6.4 h1:fv0U8FUIMPNf1L9lnHLvLhgicrIVChEkdzIKYqbNC9s=
 github.com/smartystreets/goconvey v1.6.4/go.mod h1:syvi0/a8iFYH4r/RixwvyeAJjdLS9QV7WQ/tjFTllLA=
 github.com/soheilhy/cmux v0.1.4/go.mod h1:IM3LyeVVIOuxMH7sFAkER9+bJ4dT7Ms6E4xg4kGIyLM=
+github.com/sourcegraph/conc v0.3.1-0.20240121214520-5f936abd7ae8 h1:+jumHNA0Wrelhe64i8F6HNlS8pkoyMv5sreGx2Ry5Rw=
+github.com/sourcegraph/conc v0.3.1-0.20240121214520-5f936abd7ae8/go.mod h1:3n1Cwaq1E1/1lhQhtRK2ts/ZwZEhjcQeJQ1RuC6Q/8U=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spf13/afero v1.1.2/go.mod h1:j4pytiNVoe2o6bmDsKpLACNPDBIoEAkihy7loJ1B0CQ=
-github.com/spf13/afero v1.2.2 h1:5jhuqJyZCZf2JRofRvN/nIFgIWNzPa3/Vz8mYylgbWc=
 github.com/spf13/afero v1.2.2/go.mod h1:9ZxEEn6pIJ8Rxe320qSDBk6AsU0r9pR7Q4OcevTdifk=
+github.com/spf13/afero v1.15.0 h1:b/YBCLWAJdFWJTN9cLhiXXcD7mzKn9Dm86dNnfyQw1I=
+github.com/spf13/afero v1.15.0/go.mod h1:NC2ByUVxtQs4b3sIUphxK0NioZnmxgyCrfzeuq8lxMg=
 github.com/spf13/cast v1.3.0/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
-github.com/spf13/cast v1.3.1 h1:nFm6S0SMdyzrzcmThSipiEubIDy8WEXKNZ0UOgiRpng=
-github.com/spf13/cast v1.3.1/go.mod h1:Qx5cxh0v+4UWYiBimWS+eyWzqEqokIECu5etghLkUJE=
+github.com/spf13/cast v1.10.0 h1:h2x0u2shc1QuLHfxi+cTJvs30+ZAHOGRic8uyGTDWxY=
+github.com/spf13/cast v1.10.0/go.mod h1:jNfB8QC9IA6ZuY2ZjDp0KtFO2LZZlg4S/7bzP6qqeHo=
 github.com/spf13/cobra v1.1.1/go.mod h1:WnodtKOvamDL/PwE2M4iKs8aMDBZ5Q5klgD3qfVJQMI=
-github.com/spf13/cobra v1.1.3 h1:xghbfqPkxzxP3C/f3n5DdpAbdKLj4ZE4BWQI362l53M=
-github.com/spf13/cobra v1.1.3/go.mod h1:pGADOWyqRD/YMrPZigI/zbliZ2wVD/23d+is3pSWzOo=
+github.com/spf13/cobra v1.10.2 h1:DMTTonx5m65Ic0GOoRY2c16WCbHxOOw6xxezuLaBpcU=
+github.com/spf13/cobra v1.10.2/go.mod h1:7C1pvHqHw5A4vrJfjNwvOdzYu0Gml16OCs2GRiTUUS4=
 github.com/spf13/jwalterweatherman v1.0.0/go.mod h1:cQK4TGJAtQXfYWX+Ddv3mKDzgVb68N+wFjFa4jdeBTo=
-github.com/spf13/jwalterweatherman v1.1.0 h1:ue6voC5bR5F8YxI5S67j9i582FU4Qvo2bmqnqMYADFk=
-github.com/spf13/jwalterweatherman v1.1.0/go.mod h1:aNWZUN0dPAAO/Ljvb5BEdw96iTZ0EXowPYD95IqWIGo=
 github.com/spf13/pflag v0.0.0-20170130214245-9ff6c6923cff/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
 github.com/spf13/pflag v1.0.3/go.mod h1:DYY7MBk1bdzusC3SYhjObp+wFpr4gzcvqqNjLnInEg4=
-github.com/spf13/pflag v1.0.5 h1:iy+VFUOCP1a+8yFto/drg2CJ5u0yRoB7fZw3DKv/JXA=
 github.com/spf13/pflag v1.0.5/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
-github.com/spf13/viper v1.7.0 h1:xVKxvI7ouOI5I+U9s2eeiUfMaWBVoXA3AWskkrqK0VM=
+github.com/spf13/pflag v1.0.9/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
+github.com/spf13/pflag v1.0.10 h1:4EBh2KAYBwaONj6b2Ye1GiHfwjqyROoF4RwYO+vPwFk=
+github.com/spf13/pflag v1.0.10/go.mod h1:McXfInJRrz4CZXVZOBLb0bTZqETkiAhM9Iw0y3An2Bg=
 github.com/spf13/viper v1.7.0/go.mod h1:8WkrPz2fc9jxqZNCJI/76HCieCp4Q8HaLFoCha5qpdg=
+github.com/spf13/viper v1.21.0 h1:x5S+0EU27Lbphp4UKm1C+1oQO+rKx36vfCoaVebLFSU=
+github.com/spf13/viper v1.21.0/go.mod h1:P0lhsswPGWD/1lZJ9ny3fYnVqxiegrlNrEmgLjbTCAY=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
 github.com/stretchr/objx v0.2.0/go.mod h1:qt09Ya8vawLte6SNmTgCsAVtYtaKzEcn8ATUoHMkEqE=
@@ -336,10 +347,11 @@ github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXf
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
-github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
-github.com/subosito/gotenv v1.2.0 h1:Slr1R9HxAlEKefgq5jn9U+DnETlIUa6HfgEzj0g5d7s=
+github.com/stretchr/testify v1.11.1 h1:7s2iGBzp5EwR7/aIZr8ao5+dra3wiQyKjjFuvgVKu7U=
+github.com/stretchr/testify v1.11.1/go.mod h1:wZwfW3scLgRK+23gO65QZefKpKQRnfz6sD981Nm4B6U=
 github.com/subosito/gotenv v1.2.0/go.mod h1:N0PQaV/YGNqwC0u51sEeR/aUtSLEXKX9iv69rRypqCw=
+github.com/subosito/gotenv v1.6.0 h1:9NlTDc1FTs4qu0DDq7AEtTPNw6SVm7uBMsUCUjABIf8=
+github.com/subosito/gotenv v1.6.0/go.mod h1:Dk4QP5c2W3ibzajGcXpNraDfq2IrhjMIvMSWPKKo0FU=
 github.com/tmc/grpc-websocket-proxy v0.0.0-20190109142713-0ad062ec5ee5/go.mod h1:ncp9v5uamzpCO7NfCPTXjqaC+bZgJeR0sMTm6dMHP7U=
 github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2/go.mod h1:UETIi67q53MR2AWcXfiuqkDkRtnGDLqkBTpCHuJHxtU=
 github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74=
@@ -352,6 +364,8 @@ go.opencensus.io v0.22.3/go.mod h1:yxeiOL68Rb0Xd1ddK5vPZ/oVn4vY4Ynel7k9FzqtOIw=
 go.uber.org/atomic v1.4.0/go.mod h1:gD2HeocX3+yG+ygLZcrzQJaqmWj9AIm7n08wl/qW/PE=
 go.uber.org/multierr v1.1.0/go.mod h1:wR5kodmAFQ0UK8QlbwjlSNy0Z68gJhDJUG5sjR94q/0=
 go.uber.org/zap v1.10.0/go.mod h1:vwi/ZaCAaUcBkycHslxD9B2zi4UTXhF60s6SWpuDF0Q=
+go.yaml.in/yaml/v3 v3.0.4 h1:tfq32ie2Jv2UxXFdLJdh3jXuOzWiL1fo0bu/FbuKpbc=
+go.yaml.in/yaml/v3 v3.0.4/go.mod h1:DhzuOOF2ATzADvBadXxruRBLzYTpT36CKvDb3+aBEFg=
 golang.org/x/crypto v0.0.0-20180904163835-0709b304e793/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20181029021203-45a5f77698d3/go.mod h1:6SG95UA2DQfeDnfUPMdvaQW0Q7yPrPDi9nlGo2tz2b4=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
@@ -464,9 +478,8 @@ golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20200323222414-85ca7c5b95cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20201112073958-5cba982894dd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
-golang.org/x/sys v0.0.0-20220715151400-c0bba94af5f8/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
-golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
-golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.29.0 h1:TPYlXGxvx1MGTn2GiZDhnjPA9wZzZeGKHHmKhHYvgaU=
+golang.org/x/sys v0.29.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
 golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
 golang.org/x/term v0.27.0/go.mod h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
 golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
@@ -475,8 +488,8 @@ golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
 golang.org/x/text v0.3.4/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
-golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
-golang.org/x/text v0.21.0/go.mod h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
+golang.org/x/text v0.28.0 h1:rhazDwis8INMIwQ4tpjLDzUhx6RlXqZNPEM0huQojng=
+golang.org/x/text v0.28.0/go.mod h1:U8nCwOR8jO/marOQ0QbDiOngZVEBB7MAiitBuMjXiNU=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20191024005414-555d28b269f0/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
@@ -521,7 +534,6 @@ golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4f
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
-golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1 h1:go1bK/D/BFZV2I8cIQd1NKEZ+0owSTG1fDTci4IqFcE=
 golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
@@ -586,8 +598,6 @@ gopkg.in/fsnotify.v1 v1.4.7/go.mod h1:Tz8NjZHkW78fSQdbUxIjBTcgA1z1m8ZHf0WmKUhAMy
 gopkg.in/inf.v0 v0.9.1 h1:73M5CoZyi3ZLMOyDlQh031Cx6N9NDJ2Vvfl76EDAgDc=
 gopkg.in/inf.v0 v0.9.1/go.mod h1:cWUDdTG/fYaXco+Dcufb5Vnc6Gp2YChqWtbxRZE0mXw=
 gopkg.in/ini.v1 v1.51.0/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
-gopkg.in/ini.v1 v1.51.1 h1:GyboHr4UqMiLUybYjd22ZjQIKEJEpgtLXtuGbR21Oho=
-gopkg.in/ini.v1 v1.51.1/go.mod h1:pNLf8WUiyNEtQjuu5G5vTm06TEv9tsIgeAvK8hOrP4k=
 gopkg.in/resty.v1 v1.12.0/go.mod h1:mDo4pnntr5jdWRML875a/NmxYqAlA73dVijT2AXvQQo=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7 h1:uRGJdciOHaEIrze2W8Q3AKkepLTh2hOroT7a+7czfdQ=
 gopkg.in/tomb.v1 v1.0.0-20141024135613-dd632973f1e7/go.mod h1:dt/ZhP58zS4L8KSrWDmTeBkI65Dw0HsyUHuEVlX15mw=
@@ -598,8 +608,9 @@ gopkg.in/yaml.v2 v2.2.4/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
-gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c h1:dUUwHk2QECo/6vqA44rthZ8ie2QXMNeKRTHCNY2nXvo=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA=
+gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
diff --git a/kube/kubernetes_api_service.go b/kube/kubernetes_api_service.go
index 8e7ed51..233a787 100644
--- a/kube/kubernetes_api_service.go
+++ b/kube/kubernetes_api_service.go
@@ -25,7 +25,7 @@ type KubernetesApiService interface {
 
 	DeletePod(podName string) error
 
-	CreatePrivilegedPod(nodeName string, containerName string, image string, socketPath string, timeout time.Duration, serviceaccount string) (*corev1.Pod, error)
+	CreatePrivilegedPod(nodeName string, containerName string, image string, socketPath string, timeout time.Duration, serviceaccount string, imagePullSecret string) (*corev1.Pod, error)
 
 	UploadFile(localPath string, remotePath string, podName string, containerName string) error
 }
@@ -102,7 +102,7 @@ func (k *KubernetesApiServiceImpl) DeletePod(podName string) error {
 	return err
 }
 
-func (k *KubernetesApiServiceImpl) CreatePrivilegedPod(nodeName string, containerName string, image string, socketPath string, timeout time.Duration, serviceaccount string) (*corev1.Pod, error) {
+func (k *KubernetesApiServiceImpl) CreatePrivilegedPod(nodeName string, containerName string, image string, socketPath string, timeout time.Duration, serviceaccount string, imagePullSecret string) (*corev1.Pod, error) {
 	log.Debugf("creating privileged pod on remote node")
 
 	isSupported, err := k.IsSupportedContainerRuntime(nodeName)
@@ -198,6 +198,14 @@ func (k *KubernetesApiServiceImpl) CreatePrivilegedPod(nodeName string, containe
 		podSpecs.ServiceAccountName = serviceaccount
 	}
 
+	if imagePullSecret != "" {
+		podSpecs.ImagePullSecrets = []corev1.LocalObjectReference{
+			{
+				Name: imagePullSecret,
+			},
+		}
+	}
+
 	pod := corev1.Pod{
 		TypeMeta:   typeMetadata,
 		ObjectMeta: objectMetadata,
diff --git a/pkg/cmd/sniff.go b/pkg/cmd/sniff.go
index 8b9fcce..866ddb6 100644
--- a/pkg/cmd/sniff.go
+++ b/pkg/cmd/sniff.go
@@ -9,6 +9,7 @@ import (
 	"os/signal"
 	"path/filepath"
 	"strings"
+	"sync"
 	"syscall"
 	"time"
 
@@ -54,6 +55,7 @@ type Ksniff struct {
 	settings         *config.KsniffSettings
 	snifferService   sniffer.SnifferService
 	wireshark        *exec.Cmd
+	cleanupOnce      sync.Once
 }
 
 func NewKsniff(settings *config.KsniffSettings) *Ksniff {
@@ -155,6 +157,11 @@ func NewCmdSniff(streams genericclioptions.IOStreams) *cobra.Command {
 	_ = viper.BindEnv("serviceaccount", "KUBECTL_PLUGINS_LOCAL_FLAG_SERVICE_ACCOUNT")
 	_ = viper.BindPFlag("serviceaccount", cmd.Flags().Lookup("serviceaccount"))
 
+	cmd.Flags().StringVarP(&ksniffSettings.UserSpecifiedImagePullSecret, "image-pull-secret", "", "",
+		"the image pull secret name for private registries (optional)")
+	_ = viper.BindEnv("image-pull-secret", "KUBECTL_PLUGINS_LOCAL_FLAG_IMAGE_PULL_SECRET")
+	_ = viper.BindPFlag("image-pull-secret", cmd.Flags().Lookup("image-pull-secret"))
+
 	return cmd
 }
 
@@ -202,6 +209,7 @@ func (o *Ksniff) completeBasicSettings(cmd *cobra.Command, args []string) error
 	o.settings.UseDefaultTCPDumpImage = !viper.IsSet("tcpdump-image")
 	o.settings.UseDefaultSocketPath = !viper.IsSet("socket")
 	o.settings.UserSpecifiedServiceAccount = viper.GetString("serviceaccount")
+	o.settings.UserSpecifiedImagePullSecret = viper.GetString("image-pull-secret")
 
 	if o.settings.UserSpecifiedVerboseMode {
 		log.Info("running in verbose mode")
@@ -383,6 +391,32 @@ func findLocalTcpdumpBinaryPath() (string, error) {
 	return "", errors.Errorf("couldn't find static tcpdump binary on any of: '%v'", tcpdumpLocalBinaryPathLookupList)
 }
 
+func (o *Ksniff) performCleanup() {
+	o.cleanupOnce.Do(func() {
+		log.Info("starting sniffer cleanup")
+
+		// Kill wireshark if used
+		if o.wireshark != nil {
+			if o.wireshark.Process != nil {
+				err := o.wireshark.Process.Kill()
+				if err != nil && err != os.ErrProcessDone {
+					log.WithError(err).Error("failed to kill wireshark process")
+				} else {
+					log.Debug("wireshark process killed")
+				}
+			}
+		}
+
+		// Cleanup sniffer service (removes privileged pods, etc.)
+		err := o.snifferService.Cleanup()
+		if err != nil {
+			log.WithError(err).Error("failed to cleanup sniffer, manual cleanup may be required")
+		} else {
+			log.Info("sniffer cleanup completed successfully")
+		}
+	})
+}
+
 func (o *Ksniff) setupSignalHandler() chan interface{} {
 	signals := make(chan os.Signal, 1)
 	exit := make(chan interface{})
@@ -393,26 +427,9 @@ func (o *Ksniff) setupSignalHandler() chan interface{} {
 			select {
 			case sig := <-signals:
 				if sig == syscall.SIGINT || sig == syscall.SIGTERM {
-					log.Info("starting sniffer cleanup")
-					err := o.snifferService.Cleanup()
-					if err != nil {
-						log.WithError(err).Error("failed to teardown sniffer, a manual teardown is required.")
-					}
-					log.Info("sniffer cleanup completed successfully")
-
-					// Kill wireshark if used
-					if o.wireshark != nil {
-						if o.wireshark.Process != nil {
-							err = o.wireshark.Process.Kill()
-							if err != nil && err != os.ErrProcessDone {
-								log.WithError(err).Error("failed to kill wireshark process")
-							} else {
-								log.Debug("wireshark process killed")
-							}
-						}
-					}
-
+					o.performCleanup()
 					close(signals)
+					os.Exit(0)
 				}
 			case <-exit:
 				return
@@ -435,8 +452,9 @@ func (o *Ksniff) Run() error {
 	// Ensure sniffer is clean on interrupt
 	closeHandler := o.setupSignalHandler()
 
-	// Ensure sniffer is clean on complete
+	// Ensure sniffer is cleaned up on exit (both normal and error cases)
 	defer func() {
+		o.performCleanup()
 		closeHandler <- true
 	}()
 
diff --git a/pkg/cmd/sniff_test.go b/pkg/cmd/sniff_test.go
index f7172ec..92cd76a 100644
--- a/pkg/cmd/sniff_test.go
+++ b/pkg/cmd/sniff_test.go
@@ -185,6 +185,25 @@ func TestCompleteBasicSettings_WithTcpdumpImage(t *testing.T) {
 	assert.False(t, settings.UseDefaultTCPDumpImage)
 }
 
+func TestCompleteBasicSettings_WithImagePullSecret(t *testing.T) {
+	// given
+	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
+	sniff := NewKsniff(settings)
+	cmd := NewCmdSniff(genericclioptions.IOStreams{})
+
+	// Set image-pull-secret flag
+	_ = cmd.Flags().Set("image-pull-secret", "my-registry-secret")
+
+	var commands []string
+
+	// when
+	err := sniff.completeBasicSettings(cmd, append(commands, "test-pod"))
+
+	// then
+	assert.Nil(t, err)
+	assert.Equal(t, "my-registry-secret", settings.UserSpecifiedImagePullSecret)
+}
+
 func TestCompleteBasicSettings_WithSocket(t *testing.T) {
 	// given
 	settings := config.NewKsniffSettings(genericclioptions.IOStreams{})
diff --git a/pkg/config/settings.go b/pkg/config/settings.go
index f8b1e8a..738fbf4 100644
--- a/pkg/config/settings.go
+++ b/pkg/config/settings.go
@@ -30,6 +30,7 @@ type KsniffSettings struct {
 	SocketPath                     string
 	UseDefaultSocketPath           bool
 	UserSpecifiedServiceAccount    string
+	UserSpecifiedImagePullSecret   string
 }
 
 func NewKsniffSettings(streams genericclioptions.IOStreams) *KsniffSettings {
diff --git a/pkg/service/sniffer/privileged_pod_sniffer_service.go b/pkg/service/sniffer/privileged_pod_sniffer_service.go
index 9c101a5..830b742 100644
--- a/pkg/service/sniffer/privileged_pod_sniffer_service.go
+++ b/pkg/service/sniffer/privileged_pod_sniffer_service.go
@@ -49,6 +49,7 @@ func (p *PrivilegedPodSnifferService) Setup() error {
 		p.settings.SocketPath,
 		p.settings.UserSpecifiedPodCreateTimeout,
 		p.settings.UserSpecifiedServiceAccount,
+		p.settings.UserSpecifiedImagePullSecret,
 	)
 	if err != nil {
 		log.WithError(err).Errorf("failed to create privileged pod on node: '%s'", p.settings.DetectedPodNodeName)

From d32d6b9f0c61df77867acce0c443706b5b9a1d21 Mon Sep 17 00:00:00 2001
From: Matt Long <mtl@cisco.com>
Date: Tue, 10 Feb 2026 12:19:54 +0100
Subject: [PATCH 5/5] [ksniff] update go version

---
 MODULE.bazel | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/MODULE.bazel b/MODULE.bazel
index 033a230..9d91cdd 100644
--- a/MODULE.bazel
+++ b/MODULE.bazel
@@ -8,7 +8,7 @@ bazel_dep(name = "gazelle", version = "0.47.0")
 bazel_dep(name = "platforms", version = "1.0.0")
 
 go_sdk = use_extension("@rules_go//go:extensions.bzl", "go_sdk")
-go_sdk.download(version = "1.23.4")
+go_sdk.download(version = "1.25.7")
 
 go_deps = use_extension("@gazelle//:extensions.bzl", "go_deps")
 go_deps.from_file(go_mod = "//:go.mod")