Vincent Shen
Vincent Shen
Added Kubernets auto remediation for rule `configure_crypto_policy` Related BZ: https://bugzilla.redhat.com/show_bug.cgi?id=2062530
We added support for SELinux profile binding:https://github.com/kubernetes-sigs/security-profiles-operator/pull/854 However, there are some code duplications in https://github.com/kubernetes-sigs/security-profiles-operator/blob/de3017ad869867efb9743a1c387398e7741fd3cc/internal/pkg/manager/workloadannotator/workloadannotator.go#L200 Since we will also add profile binding in the future for AppArmor. Under the current...
Shorten the finalizer string if it is over the limit /kind bug This PR shortens the node name in the finalizer string if it is too long. Fixes: [BZ 2082099](https://bugzilla.redhat.com/show_bug.cgi?id=2082099)
We have issues when the OCP version is something like 4.14.6, the old regex matches this version into both 4.6 and 4.14, this commit changes the regex so it requires...
This pr add the ability to deploy profile without upstream prefix. ex. when you run the script to deploy ocp4 profile bundle, all the profiles will have upstream in the...
Fixing expected assertion result for rule `file-permissions-cni-conf` and `file-groupowner-ovn-db-files`, `file-permissions-cni-conf` should pass on ocp version >= 4.15 Align `file-groupowner-ovn-db-files` with https://github.com/ComplianceAsCode/content/pull/11861
Added a new varible var_network_policies_namespaces_whitelist_regex, and updated the rule `configure_network_policies_namespaces` so user is able to excude namespaces by setting this variable to the regex of namespace they want to exclude...
This pr removes `api_server_insecure_port` and `api_server_api_priority_gate_enabled` from any of the OCP profiles because we no longer support those applicable OCP versions.
Add this workflow so we can test ocp4 content can be parsed on each PR
## Description The Compliance Operator will only run check for one time if a profile is executed under multiple scan setting bindings. So to ensure that the user retrieves results...