mirror of
https://github.com/aquasecurity/kube-bench.git
synced 2024-11-25 17:38:21 +00:00
Slightly more robust looking for running executables
This commit is contained in:
parent
9114e139cf
commit
0bc00e0036
14
cmd/util.go
14
cmd/util.go
@ -87,7 +87,19 @@ func verifyBin(bin string, psFunc func(string) string) bool {
|
||||
proc := strings.Fields(bin)[0]
|
||||
out := psFunc(proc)
|
||||
|
||||
return strings.Contains(out, bin)
|
||||
if !strings.Contains(out, bin) {
|
||||
return false
|
||||
}
|
||||
|
||||
// Make sure we're not just matching on a partial word (e.g. if we're looking for apiserver, don't match on kube-apiserver)
|
||||
// This will give a false positive for matching "one two" against "zero one two-x" but it will do for now
|
||||
for _, f := range strings.Fields(out) {
|
||||
if f == proc {
|
||||
return true
|
||||
}
|
||||
}
|
||||
|
||||
return false
|
||||
}
|
||||
|
||||
// findExecutable looks through a list of possible executable names and finds the first one that's running
|
||||
|
Loading…
Reference in New Issue
Block a user