Skip to content

Commit

Permalink
Policy IDs update (tenable#1396)
Browse files Browse the repository at this point in the history 
* merge duplicate policy into one

* update policy ids
  • Loading branch information
@gaurav-gogia
gaurav-gogia authored Sep 15, 2022
1 parent 064c993 commit 08934f4
Show file tree
Hide file tree
Showing 5 changed files with 4 additions and 37 deletions.
2 changes: 1 addition & 1 deletion pkg/policies/opa/rego/k8s/kubernetes_endpoint_slice/AC_K8S_0113.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@
"severity": "LOW",
"description": "Ensure endpoint slice is not created or updated with loopback addresses as this acts as an attack vector for exploiting CVE-2021-25737 by an authorized user",
"reference_id": "AC_K8S_0113",
"id": "AC_K8S_0113",
"id": "AC_K8S_0132",
"category": "Infrastructure Security",
"version": 1
}
4 changes: 2 additions & 2 deletions pkg/policies/opa/rego/k8s/kubernetes_pod/AC_K8S_0051.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@
"severity": "HIGH",
"description": "CVE-2021-25742: Ingress-nginx with custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces.",
"category": "Configuration and Vulnerability Analysis",
"reference_id": "AC_K8S_0051",
"reference_id": "AC_K8S_0050",
"version": 1,
"id": "AC_K8S_0051"
"id": "AC_K8S_0050"
}
2 changes: 1 addition & 1 deletion ...ubernetes_service/AC-K8-NS-SE-M-0188.json → ...o/k8s/kubernetes_service/AC_K8S_0112.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
"suffix": ""
},
"severity": "MEDIUM",
"description": "Restrict the use of externalIPs",
"description": "Vulnerable to CVE-2020-8554, restrict the use of externalIPs",
"reference_id": "AC-K8-NS-SE-M-0188",
"category": "Infrastructure Security",
"version": 1,
Expand Down
18 changes: 0 additions & 18 deletions pkg/policies/opa/rego/k8s/kubernetes_service/cve_2020_8554/AC-K8-NS-SE-M-0188.json
View file

This file was deleted.

15 changes: 0 additions & 15 deletions pkg/policies/opa/rego/k8s/kubernetes_service/cve_2020_8554/ensurePrivateIP.rego
View file

This file was deleted.

0 comments on commit 08934f4

Please sign in to comment.