Skip to content

Commit

Permalink
Update docker-cis.yaml
Browse files Browse the repository at this point in the history
  • Loading branch information
@lyoung-confluent @simar7
lyoung-confluent authored and simar7 committed May 24, 2024
1 parent 1b9482f commit 1e04b28
Showing 1 changed file with 3 additions and 3 deletions.
6 changes: 3 additions & 3 deletions specs/compliance/docker-cis.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -35,19 +35,19 @@ spec:
checks:
severity: 'LOW'
- id: '4.6'
name: Ensure HEALTHCHECK instructions have been added to container
name: Ensure HEALTHCHECK instructions have been added to the container image
description: 'Add HEALTHCHECK instruction in your docker container images to perform the health check on running containers.'
checks:
- id: AVD-DS-0026
severity: 'LOW'
- id: '4.7'
name: Ensure update instructions are not used alone in Dockerfiles
name: Ensure update instructions are not used alone in the Dockerfile
description: 'Do not use update instructions such as apt-get update alone or in a single line in the Dockerfile.'
checks:
- id: AVD-DS-0017
severity: 'HIGH'
- id: '4.8'
name: Ensure setuid and setgid permissions are removed (Manual)
name: Ensure setuid and setgid permissions are removed in the images (Manual)
description: 'Removing setuid and setgid permissions in the images would prevent privilege escalation attacks in the containers.'
checks:
severity: 'HIGH'
Expand Down

0 comments on commit 1e04b28

Please sign in to comment.