Fix status of cis-1.20 1.2.25 should be Manual (#1010)

* fix status of cis-1.20 1.2.25 should be Manual * Fix tests Co-authored-by: Yoav Rotem <yoavrotems97@gmail.com>
2024-11-24 08:58:11 +00:00 · 2021-10-03 18:00:58 +08:00 · 2021-10-03 18:00:58 +08:00 · e50de8145c
commit e50de8145c
parent bfd67496d9
2 changed files with 3 additions and 3 deletions
--- a/cfg/cis-1.20/master.yaml
+++ b/cfg/cis-1.20/master.yaml
@ -699,7 +699,7 @@ groups:
        scored: true

      - id: 1.2.25
-        text: "Ensure that the --request-timeout argument is set as appropriate (Automated)"
+        text: "Ensure that the --request-timeout argument is set as appropriate (Manual)"
        audit: "/bin/ps -ef | grep $apiserverbin | grep -v grep"
        type: manual
        remediation: |
@ -707,7 +707,7 @@ groups:
          and set the below parameter as appropriate and if needed.
          For example,
          --request-timeout=300s
-        scored: true
+        scored: false

      - id: 1.2.26
        text: "Ensure that the --service-account-lookup argument is set to true (Automated)"
--- a/integration/testdata/Expected_output.data
+++ b/integration/testdata/Expected_output.data
@ -46,7 +46,7 @@
 [FAIL] 1.2.22 Ensure that the --audit-log-maxage argument is set to 30 or as appropriate (Automated)
 [FAIL] 1.2.23 Ensure that the --audit-log-maxbackup argument is set to 10 or as appropriate (Automated)
 [FAIL] 1.2.24 Ensure that the --audit-log-maxsize argument is set to 100 or as appropriate (Automated)
-[WARN] 1.2.25 Ensure that the --request-timeout argument is set as appropriate (Automated)
+[WARN] 1.2.25 Ensure that the --request-timeout argument is set as appropriate (Manual)
 [PASS] 1.2.26 Ensure that the --service-account-lookup argument is set to true (Automated)
 [PASS] 1.2.27 Ensure that the --service-account-key-file argument is set as appropriate (Automated)
 [PASS] 1.2.28 Ensure that the --etcd-certfile and --etcd-keyfile arguments are set as appropriate (Automated)