-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: AWS EKS CIS v 1.4 Compliance Spec #92
Conversation
Signed-off-by: AnaisUrlichs <[email protected]>
…mpliance specs Signed-off-by: AnaisUrlichs <[email protected]>
Signed-off-by: AnaisUrlichs <[email protected]>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@AnaisUrlichs lgtm 🚀 added few nit
comments
name: Apply Security Context to Your Pods and Containers (Manual) | ||
description: Apply Security Context to Your Pods and Containers | ||
checks: | ||
- id: AVD-KSV-0021 | ||
- id: AVD-KSV-0020 | ||
- id: AVD-KSV-0005 | ||
- id: AVD-KSV-0025 | ||
- id: AVD-KSV-0104 | ||
- id: AVD-KSV-0030 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This check is marked as manual however it has automatic checks
name: Minimize the admission of containers wishing to share the host process ID namespace (Manual) | ||
description: Do not generally permit containers to be run with the hostPID flag set to true. | ||
checks: | ||
- id: AVD-KSV-0010 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This check is marked as manual however it has automatic checks
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
ah that is part of the name in the CIS benchmarks... I guess in our case since we have automated it, I should remove it
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Updated it on multiple locations
No description provided.