GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-18 16:22:33 +01:00
Code Issues Projects Releases Packages Wiki Activity
845 commits 3 branches 11 tags 4.9 MiB
Commit graph

845 commits

This branch
This branch
All branches
Author SHA1 Message Date
Thomas Sjögren
6dad6fc405
Merge pull request #517 from konstruktoid/slsa 
update slsa gha
 2023-03-15 16:47:32 +01:00
Thomas Sjögren
df36db7a70
update slsa gha 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-15 16:46:47 +01:00
Thomas Sjögren
5a450fc5ba
Merge pull request #516 from konstruktoid/rel 
update image
 2023-03-15 16:43:19 +01:00
Thomas Sjögren
956ca6bb34
update image 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-15 16:41:10 +01:00
Thomas Sjögren
faa0e88479
slsa gha 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-13 15:52:27 +01:00
Thomas Sjögren
41a44f54d3
Merge pull request #515 from konstruktoid/helper 
update yell helper with correct version
 2023-03-06 13:17:53 +01:00
Thomas Sjögren
316b610178
update yell helper with correct version 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-06 13:17:11 +01:00
Thomas Sjögren
dde48fc185
Merge pull request #514 from konstruktoid/version150 
update version and add version table
 2023-03-06 13:11:50 +01:00
Thomas Sjögren
e82fa2cf5d
update version and add version table 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-06 13:11:02 +01:00
Thomas Sjögren
ce38d3dd3c
Merge pull request #513 from konstruktoid/150 
align tests to CIS Docker Benchmark 1.5.0
 2023-03-06 13:01:33 +01:00
Thomas Sjögren
cbd07bb051
align tests to CIS Benchmark 1.5.0 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-03-06 12:59:56 +01:00
Thomas Sjögren
f375045741
Merge pull request #511 from konstruktoid/issue510 
add support for .NanoCpus
 2023-02-02 22:12:27 +01:00
Thomas Sjögren
75ccbc78a3
Merge pull request #508 from QuentinServais/fix/check_2_7_TLS 
Fix check_2_7 TLS  check with json config
 2023-02-02 11:49:10 +01:00
Thomas Sjögren
941518887b
add support for .NanoCpus 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2023-02-02 11:47:18 +01:00
QuentinServais
ee718c40c0
Fix check_2_7 TLS check with json config 2022-12-27 23:39:17 +01:00
Thomas Sjögren
5a8d6434e6
Merge pull request #506 from docker/atomist/pin-docker-base-image/distros/dockerfile.debian 
Pin Docker base image in distros/Dockerfile.debian
 2022-10-05 15:13:31 +02:00
Atomist Bot
553c11f3a9 Pin Docker image debian:sid 
debian:sid
->
debian:sid@sha256:022a3cafe84d704c272794863ca5e383667c99312358e816ad1ff6e9a41ce4f6

 [atomist:generated]
 [atomist-skill:atomist/docker-base-image-policy]

Signed-off-by: Atomist Bot <bot@atomist.com>
 2022-10-05 13:00:43 +00:00
Thomas Sjögren
8ccd83a6f0
Merge pull request #504 from gavinmporter/bsd-sed-fix 
Fix sed commands for BSD sed
 2022-07-19 13:42:49 +02:00
Gavin Porter
b29f676bbb Fix sed commands for BSD sed 2022-07-19 11:11:19 +12:00
Thomas Sjögren
44fdceb331
Merge pull request #501 from konstruktoid/issue498 
grep host* in config file before testing 2.7
 2022-05-23 11:31:04 +02:00
Thomas Sjögren
558fca319f grep host* in config file before testing 2.7 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-05-09 12:26:01 +02:00
Thomas Sjögren
7c7390e723
Merge pull request #500 from konstruktoid/vagrant 
add Vagrantfile
 2022-04-30 12:05:22 +02:00
Thomas Sjögren
d4c4538bc8 add Vagrantfile 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-04-30 12:03:57 +02:00
Thomas Sjögren
58e732f3d1
Merge pull request #499 from konstruktoid/action 
add github actions
 2022-04-30 12:01:23 +02:00
Thomas Sjögren
bb032f154a add github actions 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-04-30 12:00:35 +02:00
Thomas Sjögren
cd1619c375
Merge pull request #497 from konstruktoid/version 
Version
 2022-03-07 13:40:44 +01:00
Thomas Sjögren
3cfa505ecc update version information 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-03-07 13:39:45 +01:00
Thomas Sjögren
3fe40815ee ignore Vagrant files 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-03-07 13:39:22 +01:00
Thomas Sjögren
d44c2a9d47
Merge pull request #496 from konstruktoid/artifactvalidation 
add 4.12 check
 2022-03-07 13:06:06 +01:00
Thomas Sjögren
68c8e53dac add 4.12 check 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-03-07 13:05:22 +01:00
Thomas Sjögren
715de9c607
Merge pull request #495 from jammasterj89/master 
Update alpine to 3.15
 2022-01-11 14:01:36 +01:00
jammasterj89
975820f52b
Update alpine to 3.15 
Updated alpine version to latest - 3.15

Signed-off-by: Niall T <19202716+jammasterj89@users.noreply.github.com>
 2022-01-11 12:34:38 +00:00
Thomas Sjögren
d33139cedc
Merge pull request #494 from konstruktoid/imagenotice 
add note regarding docker image
 2022-01-06 21:33:48 +01:00
Thomas Sjögren
5c7acd72a5 add note regarding docker image 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2022-01-06 21:32:59 +01:00
Thomas Sjögren
1ff4a62836
Merge pull request #493 from konstruktoid/ISSUE492 
if configured with no-new-privileges, pass check 5.25
 2021-12-16 10:36:23 +01:00
Thomas Sjögren
0d5874877b if the docker daemon is configure with no-new-privileges, pass check 5.25 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-12-02 11:10:12 +01:00
Thomas Sjögren
3f3ff4fb2d
Merge pull request #491 from SericaLaw/fix-check-5-3 
fix style and false warning in check_5_3
 2021-12-01 10:49:06 +01:00
serica
0ae544dd03 fix style and false warning in check_5_3 2021-11-30 18:38:36 -08:00
Thomas Sjögren
ec211a3277
Merge pull request #489 from joaocfernandes/fix_typos 
Fix description typos
 2021-11-12 10:07:56 +01:00
João Fernandes
a409e03d99
Fix typo in check_5_21 2021-11-11 20:39:22 +00:00
João Fernandes
7e89ea067d
Fix typo in check_4_11 
Fix the text description for check_4_11 .
 2021-11-11 20:39:00 +00:00
Thomas Sjögren
ec3ddf2acd
Merge pull request #475 from nikitastupin/feature-list-open-ports 
Implement listing of open ports
 2021-10-31 12:50:27 +01:00
Thomas Sjögren
fd93a6ee93
Merge pull request #476 from nikitastupin/feature-specific-capability-checks 
Add checks for capabilities that allows container escape
 2021-10-31 12:26:40 +01:00
Thomas Sjögren
a40b888ee9
Merge pull request #488 from garettmd/master 
Add /etc/hostname fix for macOS
 2021-10-01 22:04:59 +02:00
Garett Dunn
8ac4513d24
Add /etc/hostname fix for macOS 2021-10-01 11:39:17 -04:00
Thomas Sjögren
1891eaa8b3
Merge pull request #487 from AErmie/patch-1 
Updated log file name
 2021-09-30 15:23:24 +02:00
Adin Ermie
d98a054c2f
Updated log file name 
From testing, the default logfile name is `docker-bench-security.log.json` not `docker-bench-security.sh.log.json`
 2021-09-30 09:02:41 -04:00
Thomas Sjögren
f656a5d683
Merge pull request #485 from AErmie/patch-1 
Added multiple check groups example
 2021-09-29 10:20:25 +02:00
Adin Ermie
e6a742ba38
Added multiple check groups example 
Added an example of running multiple groups of checks, as the documentation did not clearly show this is possible (and the proper syntax).
 2021-09-28 17:51:40 -04:00
Thomas Sjögren
dfb3a90f67
Merge pull request #478 from konstruktoid/ISSUE477 
fix socket check
 2021-07-12 21:55:31 +00:00