github/polaris
1
0
Fork 0
mirror of https://github.com/FairwindsOps/polaris.git synced 2026-05-14 05:06:59 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
patch-release
polaris/checks/dangerousCapabilities.yaml
Cydnee Owens d011bb454a add failure.all.yaml for dangerouscapabilities test (#538) 
* add failure.all.yaml for dangerouscapabilities test

* change to [ALL] failing test

* add failure.all.yaml for dangerouscapabilities test

* change to [ALL] failing test

* fix dangerous caps test

Co-authored-by: Robert Brennan <contact@rbren.io>
2021-05-11 13:12:46 -07:00

27 lines
717 B
YAML
Raw Permalink Blame History

successMessage: Container does not have any dangerous capabilities
failureMessage: Container should not have dangerous capabilities
category: Security
target: Container
schema:
'$schema': http://json-schema.org/draft-07/schema
type: object
properties:
securityContext:
type: object
properties:
capabilities:
type: object
properties:
add:
type: array
allOf:
- not:
contains:
const: ALL
- not:
contains:
const: SYS_ADMIN
- not:
contains:
const: NET_ADMIN
Reference in New Issue View Git Blame Copy Permalink