docker-bench-security

pool/docker-bench-security

SHA256

Fork 1

Commit Graph

Author	SHA256	Message	Date
Dirk Mueller	aa97ddf88d	- Update to docker-bench-security v1.6.1. See upstream changelog online at <https://github.com/docker/docker-bench-security/releases/tag/v1.6.1>. * Align with CIS Docker Benchmark v1.6.0. v1.6.0 <https://github.com/docker/docker-bench-security/releases/tag/v1.6.0> * Fix image sprawl miscalculation. * Add an option to filter out labels to exclude from checks. v1.5.0 <https://github.com/docker/docker-bench-security/releases/tag/v1.5.0> * Align with CIS Docker Benchmark v1.5.0. * Add support for .NanoCpus. v1.3.6 <https://github.com/docker/docker-bench-security/releases/tag/v1.3.6> * Add CIS Level 1 only functions. * Support user namespaces in partition check. * Deprecate rule 2.16 for Docker > 19.03. * Add checks for capabilities that allows container escape. * Implement listing of open ports. * Add 4.12 check. - Rather than patching the script entirely using sed (which can make updates error-prone), apply an actual patch to switch to using a LIBEXEC variable we can replace during packaging. Backport of <https://github.com/docker/docker-bench-security/pull/559>. + 0001-dist-adjust-script-imports-to-be-able-to-use-usr-lib.patch - checks implementing CIS Docker 1.11.0 Benchmark OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/docker-bench-security?expand=0&rev=33	2024-11-12 09:43:56 +00:00

Author

SHA256

Message

Date

Dirk Mueller

aa97ddf88d

- Update to docker-bench-security v1.6.1. See upstream changelog online at

<https://github.com/docker/docker-bench-security/releases/tag/v1.6.1>.
  * Align with CIS Docker Benchmark v1.6.0.

  v1.6.0 <https://github.com/docker/docker-bench-security/releases/tag/v1.6.0>
  * Fix image sprawl miscalculation.
  * Add an option to filter out labels to exclude from checks.

  v1.5.0 <https://github.com/docker/docker-bench-security/releases/tag/v1.5.0>
  * Align with CIS Docker Benchmark v1.5.0.
  * Add support for .NanoCpus.

  v1.3.6 <https://github.com/docker/docker-bench-security/releases/tag/v1.3.6>
  * Add CIS Level 1 only functions.
  * Support user namespaces in partition check.
  * Deprecate rule 2.16 for Docker > 19.03.
  * Add checks for capabilities that allows container escape.
  * Implement listing of open ports.
  * Add 4.12 check.

- Rather than patching the script entirely using sed (which can make updates
  error-prone), apply an actual patch to switch to using a LIBEXEC variable we
  can replace during packaging. Backport of
  <https://github.com/docker/docker-bench-security/pull/559>.
  + 0001-dist-adjust-script-imports-to-be-able-to-use-usr-lib.patch

- checks implementing CIS Docker 1.11.0 Benchmark

OBS-URL: https://build.opensuse.org/package/show/Virtualization:containers/docker-bench-security?expand=0&rev=33

2024-11-12 09:43:56 +00:00

1 Commits