69d375a480
build: consolidate building best practices
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-06-07 17:38:12 +02:00
f085965a8a
build: gha update and align syntax to be consistent
...
Signed-off-by: CrazyMax <1951866+crazy-max@users.noreply.github.com>
2024-05-16 17:18:13 +02:00
311bf8dcaa
scout: simplify dashboard instructions with direct links
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-04-10 15:13:42 +02:00
4f3de2e5d6
scout: add CVE-2024-3094 to high-profile vulns
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-04-02 14:46:38 +02:00
219ea4eb1f
scout: "Fixable vulnerabilities only" config option
...
The "Fixable critical and high vulnerabilities" OOTB policy now supports
a "Fixable vulnerabilities only" configuration option when customizing
the policy.
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-03-25 11:27:53 +01:00
f69bd6c1de
scout: remove "All critical vulnerabilities" policy
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-03-14 11:37:08 +01:00
66894a3860
scout: remove list of configurable policy params
...
This list was out of date and we now have so many policies that a list
like this is no longer helpful.
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-03-11 10:40:36 +01:00
8502fd546c
scout: copyleft policy allow-list
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-03-11 10:39:50 +01:00
9ab6a10806
Merge pull request #19387 from dvdksn/scout-policy-supported-distros
...
scout(policy): unsupported distro versions option
2024-02-23 15:15:01 +01:00
f6fe7c9b74
scout(policy): unsupported distro versions option
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-02-21 15:45:58 +01:00
f3b44a4476
cli: change reference docs url paths
...
Moves the reference documentation to a new subpath, from /engine/ to /reference/
2024-02-21 10:25:53 +01:00
d18a8c842d
scout: add "supported DOI tags" feature of unapproved base images policy
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-02-07 18:03:25 +01:00
d176a6c330
Merge pull request #19070 from dvdksn/scout-policy-base-image-from-approved-src
...
scout(policy): Unapproved base images
2024-01-23 21:24:37 +01:00
cf462ad11a
scout: add base images from approved sources policy
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-01-22 16:38:15 +01:00
da905e892c
Update SSC attestations policy description
2024-01-19 10:51:14 +01:00
18aa50a82c
Explain explicit property in default non-root user policy ( #19108 )
...
* Explain explicit property in default non-root user policy
* Apply suggestions from code review
Co-authored-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
---------
Co-authored-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-01-16 14:25:25 +01:00
fea5253efa
scout(policy): diff compliant/non-compliant Dockerfile, non-root user
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-01-15 15:40:59 +01:00
b135738db8
Merge pull request #19065 from dvdksn/policy-rephrase-default
...
scout: reword default policies to out-of-the-box
2024-01-12 15:49:51 +01:00
869a5ca74e
scout(policy): default non-root user
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-01-11 17:46:14 +01:00
b1cee8e808
scout: github integration, base image remediation
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-01-11 11:20:55 +01:00
3f20a7c790
scout: reword default policies to out-of-the-box
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2024-01-09 14:52:41 +01:00
938822568d
scout: add sonarqube integration
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-12-06 11:42:02 +01:00
ede7b23eee
scout: configurable policies m1
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-11-21 16:33:41 +01:00
431dfa78ca
scout: policy editorial improvements
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-11-21 16:21:35 +01:00
a805e0c69a
Merge pull request #18690 from dvdksn/scout-policy-ci
...
scout: policy evaluation in ci
2023-11-21 13:51:36 +01:00
1594a357a3
scout: policy evaluation in ci
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-11-21 09:26:44 +01:00
f6e63b4ebe
scout: note policy eval issue with scratch image
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-11-14 13:21:43 +01:00
dadaefce3f
Merge pull request #18606 from dvdksn/scout-attest-ootb-policy
...
scout attest ootb policy
2023-11-10 16:08:40 +01:00
241040e7c7
scout: add attestation ootb policy
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-11-10 16:03:34 +01:00
6056acbaa4
chore: change policy names
2023-11-09 16:11:13 +01:00
2259278efc
scout: add high-profile cves
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-11-01 09:06:47 +01:00
58de252407
Merge pull request #18283 from dvdksn/scout-ga-launch
...
scout: ga launch
2023-10-04 17:55:36 +02:00
6915956a80
scout: promote policy from beta to ea
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-10-02 13:08:40 +02:00
1931cfbc8f
scout: base image policy
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-10-02 05:43:59 +02:00
392ce76849
scout: update licensing policy name and description
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-09-28 17:03:27 +02:00
c455a76d2a
scout: restructure policy
...
Signed-off-by: David Karlsson <35727626+dvdksn@users.noreply.github.com>
2023-09-13 14:00:31 +02:00
David Karlsson