-
Notifications
You must be signed in to change notification settings - Fork 48
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
C-0013 - clarify remediation #585
Conversation
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
PR Description updated to latest commit (1f4b04e) |
PR Review(Review updated until commit ff9aaf0)
✨ Review tool usage guide:Overview:
With a configuration file, use the following template:
See the review usage page for a comprehensive guide on using this tool. |
PR Code Suggestions
✨ Improve tool usage guide:Overview:
With a configuration file, use the following template:
See the improve usage page for a more comprehensive guide on using this tool. |
Summary:
|
PR Description updated to latest commit (ff9aaf0) |
Persistent review updated to latest commit ff9aaf0 |
PR Code Suggestions
✨ Improve tool usage guide:Overview:
With a configuration file, use the following template:
See the improve usage page for a more comprehensive guide on using this tool. |
Summary:
|
User description
Overview
Resolves Issue #1606
Type
enhancement
Description
remediation
section inC-0013-nonrootcontainers.json
to clarify the use ofrunAsNonRoot
,runAsUser
, andrunAsGroup
for better security practices.test
section to provide more specific instructions on verifying the security settings related to running containers as non-root.Changes walkthrough
C-0013-nonrootcontainers.json
Enhanced Remediation and Testing Instructions for Non-Root Containers
controls/C-0013-nonrootcontainers.json
remediation
section to provide clearer instructions onsetting
runAsNonRoot
,runAsUser
, andrunAsGroup
.test
section to specify the verification ofrunAsUser
,runAsNonRoot
, andrunAsGroup
settings.