| .. |
|
CM.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
deny_runasrootuser.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_automountingapicred.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_default_namespace.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_docker_sock_mount.yaml
|
add policy and test case
|
2019-11-01 15:19:26 -07:00 |
|
disallow_helm_tiller.yaml
|
add disallow Helm tiller
|
2019-11-03 18:19:06 -08:00 |
|
disallow_host_filesystem.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_host_filesystem_pass.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_host_network_hostport.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_hostpid_hostipc.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_new_capabilities.yaml
|
update pod name
|
2019-11-01 11:56:17 -07:00 |
|
disallow_node_port.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
disallow_privileged.yaml
|
update disallow_priviledged
|
2019-11-08 20:04:42 -08:00 |
|
ingress-haproxy.yaml
|
- add policy and test for known ingress
|
2019-11-05 19:07:44 -08:00 |
|
ingress-nginx.yaml
|
- add policy and test for known ingress
|
2019-11-05 19:07:44 -08:00 |
|
pod-with-emptydir.yaml
|
add safe-to-evict annotation
|
2019-11-04 17:55:13 -08:00 |
|
pod-with-hostpath.yaml
|
add tect case
|
2019-11-05 15:32:45 -08:00 |
|
require_default_network_policy.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_image_tag_not_latest_deny.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_image_tag_not_latest_notag.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_image_tag_not_latest_pass.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_namespace_quota.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_pod_requests_limits.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_probes.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
require_readonly_rootfilesystem.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_default_namespace.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_generate_networkPolicy.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_mutate_endpoint.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_mutate_imagePullPolicy.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_mutate_validate_qos.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_container_capabilities.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_container_disallow_priviledgedprivelegesecalation.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_containerSecurityContext.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_default_proc_mount.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_disallow_default_serviceaccount.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_fsgroup.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_healthChecks.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_image_pullpolicy_notalways_deny.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_image_pullpolicy_notalways_pass.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_image_tag_latest_pass.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_imageRegistries.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_nonRootUser.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_selinux_context.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_sysctl_configs.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
resource_validate_volume_whitelist.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
|
trusted_image_registries.yaml
|
clean up
|
2019-10-14 14:10:34 -07:00 |
