Skip to content

Commit

Permalink
Merge pull request #264 from Prateeknandle/ginkgo_tests
Browse files Browse the repository at this point in the history 
updating ginkgo test based on updated policy-template
  • Loading branch information
@vishnusomank
vishnusomank committed Feb 10, 2023
2 parents 47f3670 + c6910f2 commit 4e6c3a5
Show file tree
Hide file tree
Showing 2 changed files with 16 additions and 24 deletions.
20 changes: 8 additions & 12 deletions ...out/ubuntu-18-04/least-functionality-execute-package-management-process-in-container.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -3,13 +3,18 @@ kind: KubeArmorPolicy
metadata:
name: ubuntu-18-04-least-functionality-execute-package-management-process-in-container
spec:
action: Block
message: Alert! Execution of package management process inside container is denied
tags: ["NIST", "NIST_800-53_CM-7(4)", "SI-4", "process","NIST_800-53_SI-4"]
message: "Alert! Execution of package management process inside container is denied"
selector:
matchLabels:
kubearmor.io/container.name: ubuntu
severity: 5
process:
matchPaths:
- path: /usr/bin/apt
- path: /usr/bin/apt-get
- path: /bin/apt-get
- path: /sbin/apk
- path: /bin/apt
- path: /usr/bin/dpkg
- path: /bin/dpkg
Expand Down Expand Up @@ -37,13 +42,4 @@ spec:
- path: /sbin/yaourt
- path: /usr/bin/zypper
- path: /bin/zypper
selector:
matchLabels:
kubearmor.io/container.name: ubuntu
severity: 5
tags:
- NIST
- NIST_800-53_CM-7(4)
- SI-4
- process
- NIST_800-53_SI-4
action: Block
20 changes: 8 additions & 12 deletions ...press-4-8-apache-least-functionality-execute-package-management-process-in-container.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,13 +4,18 @@ metadata:
name: wordpress-wordpress-4-8-apache-least-functionality-execute-package-management-process-in-container
namespace: wordpress-mysql
spec:
action: Block
message: Alert! Execution of package management process inside container is denied
tags: ["NIST", "NIST_800-53_CM-7(4)", "SI-4", "process","NIST_800-53_SI-4"]
message: "Alert! Execution of package management process inside container is denied"
selector:
matchLabels:
app: wordpress
severity: 5
process:
matchPaths:
- path: /usr/bin/apt
- path: /usr/bin/apt-get
- path: /bin/apt-get
- path: /sbin/apk
- path: /bin/apt
- path: /usr/bin/dpkg
- path: /bin/dpkg
Expand Down Expand Up @@ -38,13 +43,4 @@ spec:
- path: /sbin/yaourt
- path: /usr/bin/zypper
- path: /bin/zypper
selector:
matchLabels:
app: wordpress
severity: 5
tags:
- NIST
- NIST_800-53_CM-7(4)
- SI-4
- process
- NIST_800-53_SI-4
action: Block

0 comments on commit 4e6c3a5

Please sign in to comment.