docker-bench-security/docker-compose.yml

services:
  docker-bench-security:
      # use image if you have a dedicated build step:
      #   docker build --rm -t docker-bench-security .
      # image: docker-bench-security

      # use build path to Dockerfile if docker-compose should build the image
      build: .

      cap_add:
          - audit_control
      labels:
          - docker_bench_security
      pid: host
      stdin_open: true
      tty: true
      volumes:
          - /var/lib:/var/lib:ro
          - /var/run/docker.sock:/var/run/docker.sock:ro
          - /usr/lib/systemd:/usr/lib/systemd:ro
          - /etc:/etc:ro
update Docker container instructions, remove out-of-date Dockerfiles Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> 2023-06-03 00:16:31 +02:00			`services:`
			`docker-bench-security:`
			`# use image if you have a dedicated build step:`
			`# docker build --rm -t docker-bench-security .`
			`# image: docker-bench-security`
use compose to improve readability Signed-off-by: Peter <lusitania@users.noreply.github.com> 2015-09-21 11:52:39 +02:00
update Docker container instructions, remove out-of-date Dockerfiles Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> 2023-06-03 00:16:31 +02:00			`# use build path to Dockerfile if docker-compose should build the image`
			`build: .`
use compose to improve readability Signed-off-by: Peter <lusitania@users.noreply.github.com> 2015-09-21 11:52:39 +02:00
update Docker container instructions, remove out-of-date Dockerfiles Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> 2023-06-03 00:16:31 +02:00			`cap_add:`
			`- audit_control`
			`labels:`
			`- docker_bench_security`
			`pid: host`
			`stdin_open: true`
			`tty: true`
			`volumes:`
			`- /var/lib:/var/lib:ro`
			`- /var/run/docker.sock:/var/run/docker.sock:ro`
			`- /usr/lib/systemd:/usr/lib/systemd:ro`
			`- /etc:/etc:ro`