- Aug 12, 2020
-
-
Liz Rice authored
* read-only-port defaults are correct * Tests that should catch good read-only-port * Rework checks & tests * Linting on issue template YAML * More explicit test for 4.2.4
-
- Aug 09, 2020
-
-
Huang Huang authored
* Add tests for 1.1.19、1.1.20 and 1.1.21 of cis-1.5 * Avoid division by 0 * Use bitmask instead of lte * Change to use multiple values via `use_multiple_values: true` * Use find in 1.1.20 and 1.1.21
-
- Aug 03, 2020
-
-
Liz Rice authored
Allows user to specify either `--version` or `--benchmark-version` as `eks-1.0` Allows user to specify (or auto-detect K8s version 1.18) and get the CIS 1.5 benchmark
-
Huang Huang authored
-
- Jul 21, 2020
-
-
Kevin W Monroe authored
-
Huang Huang authored
* 4.1.7 of cis-1.5 should not be marked as manual * Making the test posix compliant like #643
-
- Jul 10, 2020
-
-
Paavan authored
* added eks-1.0 cfg and modified job-eks.yaml for node checks * fixed yamllint errors and README updates
-
- Jul 08, 2020
-
-
Huang Huang authored
-
- Jun 17, 2020
-
-
Andrew Horton authored
-
- May 20, 2020
-
-
Huang Huang authored
* Remove unnecessary whitespaces * Fix a typo * Add integration tests for cis 1.3 and cis 1.5 * Change the timeout of integration tests from 600s to 1200s * Avoid repeated codes
-
- May 14, 2020
-
-
Huang Huang authored
Co-authored-by:Liz Rice <liz@lizrice.com>
-
Gábor Lipták authored
Co-authored-by:
-
- Mar 16, 2020
-
-
Mathis Kretz authored
* Add config paths for microk8s * Fix order for kube-proxy conf path and fix yaml linting issue Co-authored-by:
Mathis Kretz <mathis@bespinian.io> Co-authored-by:
-
yoavrotems authored
* Add option to do bitwise and between two value in order to compare permissions * Update test.go Removed self debug note * Update test_test.go FIx typo * Update test.go * Update test.go Switched between max and requested value, because accidentally assigned them oppositely and remove old function relate to octal base * Update test_test.go * Update test_test.go
-
- Mar 03, 2020
-
-
Huang Huang authored
Co-authored-by:Roberto Rojas <robertojrojas@gmail.com>
-
Abubakr-Sadik Nii Nai Davis authored
* Add initial commit for CIS GKE 1.0 benchmark * Update README with GKE instructions * Fix YAML linter issues * Set GKE benchmark k8s version to gke-1.0 * Add tests for gke-1.0 Co-authored-by:
-
- Mar 02, 2020
-
-
Thorsten Schifferdecker authored
proykubeconfig -> proxykubeconfig
-
- Feb 18, 2020
-
-
Huang Huang authored
Fixes #582
-
- Jan 22, 2020
-
-
LukasAuerbeck authored
Co-authored-by: -
mustafa-rean authored
Co-authored-by:
-
- Jan 07, 2020
-
-
Murali Paluru authored
-
- Jan 06, 2020
-
-
James Ward authored
* add yamllint command to travis CI installs and runs a linter across the YAML in the project to ensure consistency in the written YAML. this uses yamllint and the default yamllint config with "truthy" and "line-length" disabled. * run dos2unix on CRLF files * YAMLLINT: remove trailing spaces * YAMLLint: add YAML document start * YAMLLint: too many spaces around bracket * YAMLLint: fix indentation * YAMLLint: remove duplicate key * YAMLLint: newline at end of file * YAMLLint: Too few spaces after comma * YAMLLint: too many spaces after colon
-
- Dec 13, 2019
-
-
Roberto Rojas authored
* isEtcd should not run on openshift 3.10/3.11 * adds openssl * fixed tests * fixes bugs * adds isEtcd tests
-
- Dec 10, 2019
-
-
Huang Huang authored
* Fix remediation of 2.2.3 in cis-1.3 * Fix remediation of 4.1.1 in cis-1.5
-
- Dec 09, 2019
-
-
Mateus Caruccio authored
* Adds openshift to autodetect node type * detect okd node units
-
- Dec 05, 2019
-
-
Roberto Rojas authored
* Initial commit. * Add master and node config. * Add section 5 of CIS 1.5.1. * Split sections into section files * Fix YAML issues. * adds target translation * adds target translation * adds cis-1.5 mapping * fixed tests * fixes are per PR * fixed intergration test * integration kind test file to appropriate ks8 version * fixed etcd text * fixed README * fixed text * etcd: fixed grep path * etcd: fixes * fixed error message bug * Update README.md Co-Authored-By:
-
- Dec 04, 2019
-
-
Huang Huang authored
-
- Nov 27, 2019
-
-
Roberto Rojas authored
* Add kubeconfig location of kube-proxy for AKS * Add job for AKS node * Automate ca file permission check * removed job-aks.yaml as other PRs added needed features * fixed integration test due to merge changes
-
- Nov 06, 2019
-
-
Liz Rice authored
Fixes: https://github.com/aquasecurity/kube-bench/issues/420 Signed-off-by:
Manuel Rüger <manuel@rueg.eu>
-
- Nov 05, 2019
-
-
Roberto Rojas authored
* starting benchmark flag * Revert "starting benchmark flag" This reverts commit 58fc948626cb2f99a4f26e9cef3675b4d0938176. * fixes issue #269 * add more unit tests * fix bug * Update cmd/common.go Co-Authored-By:
-
mwwolters authored
Changed 1.3.3 to check that --use-service-account-credentials isn't set to false, but the flag is set (#442)
-
- Nov 01, 2019
-
-
Roberto Rojas authored
* fixes issue #501 * specify abolute path for ps and cat
-
- Oct 26, 2019
-
-
Kevin W Monroe authored
-
Prem Kumar authored
* fix flag repetition in ocp-3.11/node.yaml * fix flag repetition in ocp-3.11/master.yaml
-
- Oct 24, 2019
-
-
Arpit Pandey authored
-
- Oct 18, 2019
-
-
Simarpreet Singh authored
* master.yaml: Add --audit-policy-file check for 1.1.37. Signed-off-by:
Simarpreet Singh <simar@linux.com> * fix-177: fix line endings Signed-off-by:
-
- Oct 14, 2019
-
-
Simarpreet Singh authored
* common_test: Add a failing test to show the SISEGV Signed-off-by:
-
Roberto Rojas authored
* removed version prior to 1.11 * removed references to kubernetes versions prior to 1.11
-
Roberto Rojas authored
* starts fixes #353 * new approach to minize duplications * applied merged yaml files for v1.11 and v1.13 * yaml files json/params merged * fixes to remove double quotes from numbers and booleans * fixed bug * fixed certificate check * removed -json files * changes based on PR review * Update check/check_test.go Yay more tests! Co-Authored-By:
-
- Oct 12, 2019
-
-
Roberto Rojas authored
-
