-
Notifications
You must be signed in to change notification settings - Fork 898
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Custom macro expansion issues in falco_rules.local.yaml #504
Comments
@mstemm any thoughts on why the Lua compiler isn't working for this macro? |
When I debugged it with him, I think it had to due to the fact that the user macro was in a separate file. |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
Hello! I think we need this one because it will allow users to make their rules cleaner 🙂 |
Ok, reopening. |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
Related to #706 |
I think we can close this since it had been detailed a lot more in #706 - wdyt @JPLachance ? |
Have fun! :) |
Greetings,
I an trying to define some custom conditions in the
user_read_sensitive_file_conditions
macro. That macro is defined in falco_rules.yaml and I'm overriding it infalco_rules.local.yaml
.To make my YAML file cleaner, I'm defining the following macro:
Then, I'm using the
puppet_access_sudoers
in the override ofuser_read_sensitive_file_conditions
:The result is the following error:
The
puppet_access_sudoers
is defined above the overrideuser_read_sensitive_file_conditions
, but the Lua compiler fails to find it.A workaround is the following:
It works, but it will be more complicated to maintain. :)
Thanks for your help!
The text was updated successfully, but these errors were encountered: