update test scenario and change rule to audit mode

2025-03-29 10:55:05 +00:00 · 2019-11-07 19:28:48 -08:00 · 2019-11-07 19:28:48 -08:00 · ab2e671df5
commit ab2e671df5
parent a06313b11c
2 changed files with 3 additions and 3 deletions
--- a/samples/best_practices/disallow_hostpid_hostipc.yaml
+++ b/samples/best_practices/disallow_hostpid_hostipc.yaml
@ -9,7 +9,7 @@ metadata:
      the container process to communicate with processes on the host. To avoid pod container from 
      having visibility to host process space, validate that 'hostPID' and 'hostIPC' are set to 'false'.
 spec:
-  validationFailureAction: enforce
+  validationFailureAction: audit
  rules:
  - name: validate-host-pid-ipc
    match:
--- a/test/scenarios/samples/best_practices/scenario_validate_disallow_hostpid_hostipc.yaml
+++ b/test/scenarios/samples/best_practices/scenario_validate_disallow_hostpid_hostipc.yaml
@ -5,13 +5,13 @@ input:
 expected:
  validation:
    policyresponse:
-      policy: validate-hostpid-hostipc
+      policy: validate-host-pid-ipc
      resource:
        kind: Pod
        apiVersion: v1
        namespace: ''
        name: "nginx-with-hostpid"
      rules:
-        - name: validate-hostpid-hostipc
+        - name: validate-host-pid-ipc
          type: Validation
          success: false