From 15aa1eecd5695114b4d62eb555ea5dff691ad48a Mon Sep 17 00:00:00 2001 From: Razvan Stoica Date: Wed, 14 Apr 2021 10:58:53 +0300 Subject: [PATCH] Update remediation impact message for test 5.31 --- tests/5_container_runtime.sh | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tests/5_container_runtime.sh b/tests/5_container_runtime.sh index 50eecc5..f906a77 100644 --- a/tests/5_container_runtime.sh +++ b/tests/5_container_runtime.sh @@ -1151,7 +1151,7 @@ check_5_31() { local id="5.31" local desc="Ensure that the Docker socket is not mounted inside any containers (Scored)" local remediation="You should ensure that no containers mount docker.sock as a volume." - local remediationImpact="None." + local remediationImpact="If you really, really have to do this, you should use user namespaces and always ensure that the images you run with this configuration are properly audited and that you trust them in order to avoid potential breaches." local check="$id - $desc" starttestjson "$id" "$desc"