Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Port over etcd encryption rule from CIS 1.3 controls #10753

Merged
merged 1 commit into from
Jul 18, 2023
Merged

Port over etcd encryption rule from CIS 1.3 controls #10753

merged 1 commit into from
Jul 18, 2023

Conversation

jhrozek
Copy link
Collaborator

@jhrozek jhrozek commented Jun 26, 2023

Description:

  • We have a couple of rules in the 1.3 CIS control files. Let's port them over

Rationale:

  • CIS coverage

Review Hints:

  • Just make sure the rules match the standard

  • Question: Should we start aligning the control references in the rules with CIS 1.4 already?

@jhrozek jhrozek mentioned this pull request Jun 26, 2023
Merged
@github-actions
Copy link

Start a new ephemeral environment with changes proposed in this pull request:

Fedora Environment
Open in Gitpod

Oracle Linux 8 Environment
Open in Gitpod

@Mab879 Mab879 added the OpenShift OpenShift product related. label Jun 28, 2023
@marcusburghardt marcusburghardt requested a review from rhmdnd July 7, 2023 13:52
yuumasato
yuumasato previously approved these changes Jul 13, 2023
View reviewed changes
Copy link
Member

@yuumasato yuumasato left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@yuumasato yuumasato mentioned this pull request Jul 13, 2023
Merged
@yuumasato yuumasato dismissed their stale review July 13, 2023 13:26

I propose to merge this after #10774

@yuumasato
Copy link
Member

@jhrozek Could you rebase, please?

@yuumasato yuumasato self-assigned this Jul 14, 2023
@openshift-merge-robot openshift-merge-robot added the needs-rebase Used by openshift-ci bot. label Jul 15, 2023
@jhrozek jhrozek force-pushed the ocp-cis-1.4-section-etcd branch from 52b7e31 to 409f1aa Compare July 17, 2023 07:17
@openshift-merge-robot openshift-merge-robot removed the needs-rebase Used by openshift-ci bot. label Jul 17, 2023
@yuumasato
Copy link
Member

@jhrozek Should we switch its status to partial?

@jhrozek jhrozek force-pushed the ocp-cis-1.4-section-etcd branch from 409f1aa to f4a4f5c Compare July 18, 2023 11:49
@jhrozek
Copy link
Collaborator Author

jhrozek commented Jul 18, 2023

@jhrozek Should we switch its status to partial?

Good call, done.

@yuumasato yuumasato added this to the 0.1.69 milestone Jul 18, 2023
@vojtapolasek vojtapolasek modified the milestones: 0.1.69, 0.1.70 Jul 18, 2023
yuumasato
yuumasato approved these changes Jul 18, 2023
View reviewed changes
Copy link
Member

@yuumasato yuumasato left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM.

@codeclimate
Copy link

codeclimate bot commented Jul 18, 2023

Code Climate has analyzed commit f4a4f5c and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 53.2% (0.0% change).

View more on Code Climate.

@yuumasato yuumasato merged commit 0c51c49 into ComplianceAsCode:master Jul 18, 2023
@Mab879 Mab879 added the Update Profile Issues or pull requests related to Profiles updates. label Oct 12, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@yuumasato yuumasato yuumasato approved these changes

@rhmdnd rhmdnd Awaiting requested review from rhmdnd

Assignees

@yuumasato yuumasato

Labels
OpenShift OpenShift product related. Update Profile Issues or pull requests related to Profiles updates.
Projects
None yet
Milestone
0.1.70
Development

Successfully merging this pull request may close these issues.
5 participants
@jhrozek @yuumasato @Mab879 @vojtapolasek @openshift-merge-robot