Merge pull request #620 from kubescape/security_fw_update

Add data in rest encryption control (C-0264) to security.json
kubescape · Apr 21, 2024 · 1e38f16 · 1e38f16
2 parents e3f1133 + 37efdc3
commit 1e38f16
Show file tree

Hide file tree

Showing 2 changed files with 10 additions and 0 deletions.
diff --git a/controls/C-0262-anonymousaccessisenabled.json b/controls/C-0262-anonymousaccessisenabled.json
@@ -5,6 +5,10 @@
     "remediation": "Review and modify your cluster's RBAC configuration to ensure that only authenticated and authorized users have appropriate permissions based on their roles and responsibilities within your system.",
     "test": "Checks if ClusterRoleBinding/RoleBinding resources give permissions to anonymous user. Also checks in the apiserver if the --anonymous-auth flag is set to false",
     "attributes": {
+        "controlTypeTags": [
+            "security",
+            "compliance"
+        ]
     },
     "rulesNames": [
         "anonymous-access-enabled"

diff --git a/frameworks/security.json b/frameworks/security.json
@@ -174,6 +174,12 @@
                 "name": "Anonymous access enabled"
             }
         },
+        {
+            "controlID": "C-0264",
+            "patch": {
+            "name": "PersistentVolume without encyption"
+            }
+        },
         {
             "controlID": "C-0265",
             "patch": {