-
Notifications
You must be signed in to change notification settings - Fork 48
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
split cpu and memory controls #594
Conversation
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
PR Description updated to latest commit (018ee0d) |
PR Review
✨ Review tool usage guide:Overview:
With a configuration file, use the following template:
See the review usage page for a comprehensive guide on using this tool. |
PR Code Suggestions
✨ Improve tool usage guide:Overview:
With a configuration file, use the following template:
See the improve usage page for a more comprehensive guide on using this tool. |
Summary:
|
Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
…ibrary into split-resources-controls Signed-off-by: YiscahLevySilas1 <yiscahls@armosec.io>
Summary:
|
User description
Overview
Type
enhancement
Description
Changes walkthrough
8 files
C-0268-ensurecpurequestsareset.json
Add Control for Ensuring CPU Requests Are Set
controls/C-0268-ensurecpurequestsareset.json
names.
C-0269-ensurememoryrequestsareset.json
Add Control for Ensuring Memory Requests Are Set
controls/C-0269-ensurememoryrequestsareset.json
C-0270-ensurecpulimitsareset.json
Add Control for Ensuring CPU Limits Are Set
controls/C-0270-ensurecpulimitsareset.json
remediation, and rules names.
C-0271-ensurememorylimitsareset.json
Add Control for Ensuring Memory Limits Are Set
controls/C-0271-ensurememorylimitsareset.json
remediation, and rules names.
raw.rego
Add Rego Policy for CPU Limits Check
rules/resources-cpu-limits/raw.rego
resources.
raw.rego
Add Rego Policy for CPU Requests Check
rules/resources-cpu-requests/raw.rego
resources.
raw.rego
Add Rego Policy for Memory Limits Check
rules/resources-memory-limits/raw.rego
raw.rego
Add Rego Policy for Memory Requests Check
rules/resources-memory-requests/raw.rego
Kubernetes resources.
7 files
kube-apiserver.json
Update Exceptions with New Control IDs for CPU and Memory Limits
exceptions/kube-apiserver.json
limits.
allcontrols.json
Update Framework with New Control IDs for CPU and Memory Management
frameworks/allcontrols.json
requests and limits.
armobest.json
Update ArmoBest Framework with New Control IDs for Resource Limits
frameworks/armobest.json
and memory limits are set.
devopsbest.json
Update DevOps Best Practices Framework with New Control IDs
frameworks/devopsbest.json
active controls list.
nsaframework.json
Update NSA Framework with New Control IDs for Resource Management
frameworks/nsaframework.json
controls section.
security.json
Update Security Framework with New Control IDs for Resource Limits
frameworks/security.json
memory limits.
workloadscan.json
Update Workload Scan Framework with New Control IDs
frameworks/workloadscan.json
workload scan framework.