Roberto Rojas
a6ee61fd08
Fixes issue #289 : removed versions prior to 1.11 ( #429 )
...
* removed version prior to 1.11
* removed references to kubernetes versions prior to 1.11
5 years ago
Roberto Rojas
3aa41db166
Issue #353 : Merges JSON and Exec Params files ( #426 )
...
* starts fixes #353
* new approach to minize duplications
* applied merged yaml files for v1.11 and v1.13
* yaml files json/params merged
* fixes to remove double quotes from numbers and booleans
* fixed bug
* fixed certificate check
* removed -json files
* changes based on PR review
* Update check/check_test.go
Yay more tests!
Co-Authored-By: Liz Rice <liz@lizrice.com>
* changes as PR review
* fixed bug when scored check is missing tests
* attempt to improve the code
* fixed list breaks
* removes handleError function
* Update check/check.go
Accepting suggested log level.
Co-Authored-By: Liz Rice <liz@lizrice.com>
5 years ago
Roberto Rojas
c22f81610d
removes federated ( #431 )
5 years ago
Roberto Rojas
86e3456f33
issue #243 : Changes condition so that score: false tests are performed ( #357 )
...
* issue #243 : Changes condition so that score: false tests are performed
* issue #243 : Changes comments.
5 years ago
Yoav Hizkiahou
d1c3e3163b
Genereate expected result automatically for each test
5 years ago
Yoav Hizkiahou
e7a8c14715
Save the audit command when requesting json output under the "audit" key
5 years ago
Liz Rice
c361b9b82f
Merge branch 'master' into issue_278_remediation
5 years ago
Murali Paluru
7c6b9680b4
add remediation field
5 years ago
Daniel Pacak
306e1960af
Add flags to further filter CIS checks to run
5 years ago
Abubakr-Sadik Nii Nai Davis
4b8a7ffbe1
Add ":" as a valid flag-value separator for tests
...
This is useful for checking values in YAML (possibly JSON) kubernetes config files.
6 years ago
Liz Rice
db962a0ad9
Fix merge of skip check
6 years ago
Abubakr-Sadik Nii Nai Davis
911e9051dc
Merge remote-tracking branch 'origin/master' into ocp-configs
6 years ago
Abubakr-Sadik Nii Nai Davis
e899e941f7
Add OCP 3.10 benchmarks.
6 years ago
Yoav Hizkiahou
49f745af8e
Support new check type - skip:
...
If a check is marked with type "skip", it will be marked as Info.
Support scored property:
If a check is not scored and is not marked with type skip, it will be marked as Warn.
6 years ago
Itai Ben-Natan
e9076233dd
Support actual result in json output.
...
This commit adds the actual value of the result
of the value which was returned by the test.
6 years ago
nazemu
017a9836ce
Result structure changes
...
Changes to the json structure and field names
7 years ago
Liz Rice
0e9c11ebd5
Remove empty error messages that manifested as "%s"
7 years ago
Abubakr-Sadik Nii Nai Davis
7c7d477d78
Import os to fix issue in previous merge commit.
7 years ago
Abubakr-Sadik Nii Nai Davis
dddea28713
Merge branch 'master' into issue-25
7 years ago
Abubakr-Sadik Nii Nai Davis
d2fa9d35b6
Rewrite audit commands in the check definition that contain shell builtins
...
and modify text to command function to support this.
Shell builtins fail the binary command lookup test which result in a
WARN. Audit commands which include shell builtins must use the form:
"/bin/sh -c 'sh-builtin arg'"
So they are executed properly. Additionally Go will fail to execute
commands involving shell builtins if they are not in the above format.
7 years ago
Liz Rice
767e8eb835
Sorting out the bad merge
7 years ago
Abubakr-Sadik Nii Nai Davis
09ca739dc0
Add check type manual.
...
Results of manual checks are forced to WARN to inform users to check manually.
7 years ago
Liz Rice
b5f4876138
Revert "Issue 19"
7 years ago
Liz Rice
cf5f025593
Merge branch 'master' into issue-19
7 years ago
Abubakr-Sadik Nii Nai Davis
43c1470c0e
Add check type manual.
...
Results of manual checks are forced to WARN to inform users to check manually.
7 years ago
Abubakr-Sadik Nii Nai Davis
f88de572f6
Improve error handling.
7 years ago
Abubakr-Sadik Nii Nai Davis
f589fd58e1
Add few modifications.
7 years ago
Abubakr-Sadik Nii Nai Davis
2ee99eca64
Add support for various installation modes, hyperkube, kubeadm and kops.
...
Issue #17 .
7 years ago
Abubakr-Sadik Nii Nai Davis
bd53529387
Fix issue #16 about supporting verbosity.
7 years ago
Abubakr-Sadik Nii Nai Davis
dbbafd54a5
Do not exit on command exit, print error message to stderr and continue.
7 years ago
Abubakr-Sadik Nii Nai Davis
b1a76360e7
Do not clutter the output with error messages from commands in the audit pipeline.
7 years ago
Abubakr-Sadik Nii Nai Davis
e61dcabdfb
Remove extraneous debug commands.
7 years ago
Abubakr-Sadik Nii Nai Davis
d0d9900b29
Resolve issue #7 wait: error running audit command exit status 1.
...
This is caused by a command in the audit pipeline (for example
ps -ef | grep kube-apiserver) failing. The causes of this failure
in my testing is usually a missing config file.
Extensive refactor and correction in verification code to check for
config files and binaries.
Replace joncalhoun/pipes with implementation using exec.Cmds so errors
are visible and can be handled when audit pipeline commands fail.
Change some audit commands
from: ps -ef | grep <cmd> | grep -v
to: ps -C <something> -o comm,args --no-headers
which is simpler to work with.
7 years ago
Liz Rice
800c18ccf3
colorPrint for the output
...
Use the same format output for warnings even if they aren’t related to
a specific test ID
7 years ago
Amir Jerbi
154a140f74
Initial commit
7 years ago