Sebastian Ehmann
b9be7daa4a
Directly convert buffer to string ( #492 )
...
Using `buf.String()` instead of `fmt.Sprintf` is simpler
5 years ago
Roberto Rojas
a6ee61fd08
Fixes issue #289 : removed versions prior to 1.11 ( #429 )
...
* removed version prior to 1.11
* removed references to kubernetes versions prior to 1.11
5 years ago
Roberto Rojas
3aa41db166
Issue #353 : Merges JSON and Exec Params files ( #426 )
...
* starts fixes #353
* new approach to minize duplications
* applied merged yaml files for v1.11 and v1.13
* yaml files json/params merged
* fixes to remove double quotes from numbers and booleans
* fixed bug
* fixed certificate check
* removed -json files
* changes based on PR review
* Update check/check_test.go
Yay more tests!
Co-Authored-By: Liz Rice <liz@lizrice.com>
* changes as PR review
* fixed bug when scored check is missing tests
* attempt to improve the code
* fixed list breaks
* removes handleError function
* Update check/check.go
Accepting suggested log level.
Co-Authored-By: Liz Rice <liz@lizrice.com>
5 years ago
Roberto Rojas
c22f81610d
removes federated ( #431 )
5 years ago
Roberto Rojas
4416e46967
Adds Unit Tests for check/toNumeric ( #401 )
...
* fixes issue #364
* fixed unit test error text
5 years ago
Roberto Rojas
937bfc7b2e
issue #344 : Adds support for array comparison. Every element in the s… ( #367 )
...
* issue #344 : Adds support for array comparison. Every element in the source array must exist in the target array.
* issue #344 : Fixed typo and found if condition based on code review
* adds unit tests for valid_elements comparison
* removes spaces from split strings
5 years ago
Roberto Rojas
dab5e92bb5
Issue #363 : Adds Unit Tests for Test Comparisons ( #366 )
...
* issue #363 : starts unit tests for Test Comparison.
* issue #363 : Adds tests for "eq" operation
* changes test result message
* issue #363 : Adds tests for "noteq" operation
* issue #363 : Adds tests for "gt" operation
* issue #363 : Adds tests for "lt" operation
* issue #363 : Adds tests for "gte" operation
* issue #363 : Adds tests for "lte" operation
* issue #363 : Adds tests for "has" operation
* issue #363 : Adds tests for "nothave" operation
* issue #363 : Adds tests for "regex" operation
5 years ago
Roberto Rojas
86e3456f33
issue #243 : Changes condition so that score: false tests are performed ( #357 )
...
* issue #243 : Changes condition so that score: false tests are performed
* issue #243 : Changes comments.
5 years ago
Roberto Rojas
d43cdfdf01
Issue #355 : Adds Unit Tests for JSONPath Parse & Execute ( #358 )
...
* issue #335 : Adds json/yaml unmarshal Unit Tests.
* issue #335 : Adds jsonpath Unit Tests.
* issue #335 : Removes log package.
5 years ago
Liz Rice
7f2e9b5231
Merge branch 'master' into op-regex
5 years ago
Simarpreet Singh
5df39eed02
ocp-3.10: Fix malformed yaml and improve TestControls_RunChecks
...
This improves the TestControls_RunChecks() test by making
more comprehensive assertions on a more fully fledged input yaml
Fixes: https://github.com/aquasecurity/kube-bench/issues/304
Signed-off-by: Simarpreet Singh <simar@linux.com>
5 years ago
wwwil
83c7536c8a
Add tests for regex test op
5 years ago
wwwil
e4f0f470ee
Add regex op to test
5 years ago
Yoav Hizkiahou
ddb677bc69
Generate expected result by strings join
5 years ago
Yoav Hizkiahou
d1c3e3163b
Genereate expected result automatically for each test
5 years ago
Liz Rice
31019c44da
Merge branch 'master' into bugfix-no-actual-result
5 years ago
Yoav Hizkiahou
e7a8c14715
Save the audit command when requesting json output under the "audit" key
5 years ago
Yoav Hizkiahou
240c8ad5b0
The check's actual result property is now set to be the audit command's output
...
fix #280
5 years ago
Liz Rice
c361b9b82f
Merge branch 'master' into issue_278_remediation
5 years ago
Murali Paluru
7c6b9680b4
add remediation field
5 years ago
Liz Rice
8c8ae7ce76
Update copyright date
5 years ago
Liz Rice
0d57a9dff3
Update copyright date
5 years ago
Daniel Pacak
5fb133cd02
Adjust the semantics of scored and unscored flags
5 years ago
Daniel Pacak
306e1960af
Add flags to further filter CIS checks to run
5 years ago
Liz Rice
902a10f1c7
Just have one path for both json and yaml
6 years ago
Liz Rice
9b034024a7
Complete merge where test numbers changes
6 years ago
Liz Rice
c887794807
Merge branch 'master' into feature/json-config
6 years ago
Abubakr-Sadik Nii Nai Davis
4b8a7ffbe1
Add ":" as a valid flag-value separator for tests
...
This is useful for checking values in YAML (possibly JSON) kubernetes config files.
6 years ago
Florent Delannoy
4d3144ca21
Support JSON and YAML configuration
...
Support new configuration options besides --flags:
- JSON file through `jsonpath`
- YAML file through `yamlpath`
These new options are fully backwards-compatible with the existing
tests.
Added a new profile, 1.11-json, that expects a JSON kubelet
configuration file and scores accordingly. This profile is compatible
with EKS.
6 years ago
Liz Rice
cd231106cc
Improve comment
...
Tests could easily be marked "skip" because the user doesn't want to run them in their environment, and in this common case the set of tests will be non-nil
6 years ago
Liz Rice
db962a0ad9
Fix merge of skip check
6 years ago
Abubakr-Sadik Nii Nai Davis
911e9051dc
Merge remote-tracking branch 'origin/master' into ocp-configs
6 years ago
Abubakr-Sadik Nii Nai Davis
e899e941f7
Add OCP 3.10 benchmarks.
6 years ago
Yoav Hizkiahou
49f745af8e
Support new check type - skip:
...
If a check is marked with type "skip", it will be marked as Info.
Support scored property:
If a check is not scored and is not marked with type skip, it will be marked as Warn.
6 years ago
Itai Ben-Natan
e9076233dd
Support actual result in json output.
...
This commit adds the actual value of the result
of the value which was returned by the test.
6 years ago
Philippe ALEXANDRE
7b61cf60fe
Add strings.ToLower ...
6 years ago
Philippe ALEXANDRE
c4e7487ba7
Do case insensitive comparaison for booleans - Fix #125
6 years ago
nazemu
017a9836ce
Result structure changes
...
Changes to the json structure and field names
7 years ago
Steven Logue
d79a2a5478
added support for saving scan results to pgsql
7 years ago
Abubakr-Sadik Nii Nai Davis
d9e1eee2cd
Merge remote-tracking branch 'origin/master' into support for multiple
...
Kubernetes versions.
7 years ago
Abubakr-Sadik Nii Nai Davis
8ea0892437
Update controls to support multiple Kubernetes versions.
7 years ago
Liz Rice
e8579ade6c
Add tests for #50
7 years ago
Juned Memon
44994ced33
Fixed issue of The controls for master - admission control showing wrong status #49
7 years ago
Liz Rice
0e9c11ebd5
Remove empty error messages that manifested as "%s"
7 years ago
Liz Rice
af0eadc792
Add a couple more tests for file permission checks
7 years ago
Abubakr-Sadik Nii Nai Davis
7c7d477d78
Import os to fix issue in previous merge commit.
7 years ago
Abubakr-Sadik Nii Nai Davis
dddea28713
Merge branch 'master' into issue-25
7 years ago
Abubakr-Sadik Nii Nai Davis
0933fa420b
Add new tests and clean up old tests.
7 years ago
Abubakr-Sadik Nii Nai Davis
d2fa9d35b6
Rewrite audit commands in the check definition that contain shell builtins
...
and modify text to command function to support this.
Shell builtins fail the binary command lookup test which result in a
WARN. Audit commands which include shell builtins must use the form:
"/bin/sh -c 'sh-builtin arg'"
So they are executed properly. Additionally Go will fail to execute
commands involving shell builtins if they are not in the above format.
7 years ago
Liz Rice
767e8eb835
Sorting out the bad merge
7 years ago