mirror of https://git.rancher.io/charts
[dev-v2.9] rancher-cis-benchmark 6.0.0-rc4 update (#4166)
Krunal Hingu
GitHub
parent
22cbf2361a
commit
cc6e1ac756
Binary file not shown.
Binary file not shown.
Binary file not shown.
|
|
@ -0,0 +1,10 @@
|
||||||
|
annotations:
|
||||||
|
catalog.cattle.io/certified: rancher
|
||||||
|
catalog.cattle.io/hidden: "true"
|
||||||
|
catalog.cattle.io/namespace: cis-operator-system
|
||||||
|
catalog.cattle.io/release-name: rancher-cis-benchmark-crd
|
||||||
|
apiVersion: v1
|
||||||
|
description: Installs the CRDs for rancher-cis-benchmark.
|
||||||
|
name: rancher-cis-benchmark-crd
|
||||||
|
type: application
|
||||||
|
version: 6.0.0-rc4
|
||||||
|
|
@ -0,0 +1,2 @@
|
||||||
|
# rancher-cis-benchmark-crd
|
||||||
|
A Rancher chart that installs the CRDs used by rancher-cis-benchmark.
|
||||||
|
|
@ -0,0 +1,148 @@
|
||||||
|
apiVersion: apiextensions.k8s.io/v1
|
||||||
|
kind: CustomResourceDefinition
|
||||||
|
metadata:
|
||||||
|
name: clusterscans.cis.cattle.io
|
||||||
|
spec:
|
||||||
|
group: cis.cattle.io
|
||||||
|
names:
|
||||||
|
kind: ClusterScan
|
||||||
|
plural: clusterscans
|
||||||
|
scope: Cluster
|
||||||
|
versions:
|
||||||
|
- name: v1
|
||||||
|
served: true
|
||||||
|
storage: true
|
||||||
|
additionalPrinterColumns:
|
||||||
|
- jsonPath: .status.lastRunScanProfileName
|
||||||
|
name: ClusterScanProfile
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.summary.total
|
||||||
|
name: Total
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.summary.pass
|
||||||
|
name: Pass
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.summary.fail
|
||||||
|
name: Fail
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.summary.skip
|
||||||
|
name: Skip
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.summary.warn
|
||||||
|
name: Warn
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.summary.notApplicable
|
||||||
|
name: Not Applicable
|
||||||
|
type: string
|
||||||
|
- jsonPath: .status.lastRunTimestamp
|
||||||
|
name: LastRunTimestamp
|
||||||
|
type: string
|
||||||
|
- jsonPath: .spec.scheduledScanConfig.cronSchedule
|
||||||
|
name: CronSchedule
|
||||||
|
type: string
|
||||||
|
subresources:
|
||||||
|
status: {}
|
||||||
|
schema:
|
||||||
|
openAPIV3Schema:
|
||||||
|
properties:
|
||||||
|
spec:
|
||||||
|
properties:
|
||||||
|
scanProfileName:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
scheduledScanConfig:
|
||||||
|
nullable: true
|
||||||
|
properties:
|
||||||
|
cronSchedule:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
retentionCount:
|
||||||
|
type: integer
|
||||||
|
scanAlertRule:
|
||||||
|
nullable: true
|
||||||
|
properties:
|
||||||
|
alertOnComplete:
|
||||||
|
type: boolean
|
||||||
|
alertOnFailure:
|
||||||
|
type: boolean
|
||||||
|
type: object
|
||||||
|
type: object
|
||||||
|
scoreWarning:
|
||||||
|
enum:
|
||||||
|
- pass
|
||||||
|
- fail
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
type: object
|
||||||
|
status:
|
||||||
|
properties:
|
||||||
|
NextScanAt:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
ScanAlertingRuleName:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
conditions:
|
||||||
|
items:
|
||||||
|
properties:
|
||||||
|
lastTransitionTime:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
lastUpdateTime:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
message:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
reason:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
status:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
type:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
type: object
|
||||||
|
nullable: true
|
||||||
|
type: array
|
||||||
|
display:
|
||||||
|
nullable: true
|
||||||
|
properties:
|
||||||
|
error:
|
||||||
|
type: boolean
|
||||||
|
message:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
state:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
transitioning:
|
||||||
|
type: boolean
|
||||||
|
type: object
|
||||||
|
lastRunScanProfileName:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
lastRunTimestamp:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
observedGeneration:
|
||||||
|
type: integer
|
||||||
|
summary:
|
||||||
|
nullable: true
|
||||||
|
properties:
|
||||||
|
fail:
|
||||||
|
type: integer
|
||||||
|
notApplicable:
|
||||||
|
type: integer
|
||||||
|
pass:
|
||||||
|
type: integer
|
||||||
|
skip:
|
||||||
|
type: integer
|
||||||
|
total:
|
||||||
|
type: integer
|
||||||
|
warn:
|
||||||
|
type: integer
|
||||||
|
type: object
|
||||||
|
type: object
|
||||||
|
type: object
|
||||||
|
|
@ -0,0 +1,54 @@
|
||||||
|
apiVersion: apiextensions.k8s.io/v1
|
||||||
|
kind: CustomResourceDefinition
|
||||||
|
metadata:
|
||||||
|
name: clusterscanbenchmarks.cis.cattle.io
|
||||||
|
spec:
|
||||||
|
group: cis.cattle.io
|
||||||
|
names:
|
||||||
|
kind: ClusterScanBenchmark
|
||||||
|
plural: clusterscanbenchmarks
|
||||||
|
scope: Cluster
|
||||||
|
versions:
|
||||||
|
- name: v1
|
||||||
|
served: true
|
||||||
|
storage: true
|
||||||
|
additionalPrinterColumns:
|
||||||
|
- jsonPath: .spec.clusterProvider
|
||||||
|
name: ClusterProvider
|
||||||
|
type: string
|
||||||
|
- jsonPath: .spec.minKubernetesVersion
|
||||||
|
name: MinKubernetesVersion
|
||||||
|
type: string
|
||||||
|
- jsonPath: .spec.maxKubernetesVersion
|
||||||
|
name: MaxKubernetesVersion
|
||||||
|
type: string
|
||||||
|
- jsonPath: .spec.customBenchmarkConfigMapName
|
||||||
|
name: customBenchmarkConfigMapName
|
||||||
|
type: string
|
||||||
|
- jsonPath: .spec.customBenchmarkConfigMapNamespace
|
||||||
|
name: customBenchmarkConfigMapNamespace
|
||||||
|
type: string
|
||||||
|
subresources:
|
||||||
|
status: {}
|
||||||
|
schema:
|
||||||
|
openAPIV3Schema:
|
||||||
|
properties:
|
||||||
|
spec:
|
||||||
|
properties:
|
||||||
|
clusterProvider:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
customBenchmarkConfigMapName:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
customBenchmarkConfigMapNamespace:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
maxKubernetesVersion:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
minKubernetesVersion:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
type: object
|
||||||
|
type: object
|
||||||
|
|
@ -0,0 +1,36 @@
|
||||||
|
apiVersion: apiextensions.k8s.io/v1
|
||||||
|
kind: CustomResourceDefinition
|
||||||
|
metadata:
|
||||||
|
name: clusterscanprofiles.cis.cattle.io
|
||||||
|
spec:
|
||||||
|
group: cis.cattle.io
|
||||||
|
names:
|
||||||
|
kind: ClusterScanProfile
|
||||||
|
plural: clusterscanprofiles
|
||||||
|
scope: Cluster
|
||||||
|
versions:
|
||||||
|
- name: v1
|
||||||
|
served: true
|
||||||
|
storage: true
|
||||||
|
subresources:
|
||||||
|
status: {}
|
||||||
|
schema:
|
||||||
|
openAPIV3Schema:
|
||||||
|
properties:
|
||||||
|
spec:
|
||||||
|
properties:
|
||||||
|
benchmarkVersion:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
skipTests:
|
||||||
|
items:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
nullable: true
|
||||||
|
type: array
|
||||||
|
type: object
|
||||||
|
type: object
|
||||||
|
additionalPrinterColumns:
|
||||||
|
- jsonPath: .spec.benchmarkVersion
|
||||||
|
name: BenchmarkVersion
|
||||||
|
type: string
|
||||||
|
|
@ -0,0 +1,39 @@
|
||||||
|
apiVersion: apiextensions.k8s.io/v1
|
||||||
|
kind: CustomResourceDefinition
|
||||||
|
metadata:
|
||||||
|
name: clusterscanreports.cis.cattle.io
|
||||||
|
spec:
|
||||||
|
group: cis.cattle.io
|
||||||
|
names:
|
||||||
|
kind: ClusterScanReport
|
||||||
|
plural: clusterscanreports
|
||||||
|
scope: Cluster
|
||||||
|
versions:
|
||||||
|
- name: v1
|
||||||
|
served: true
|
||||||
|
storage: true
|
||||||
|
additionalPrinterColumns:
|
||||||
|
- jsonPath: .spec.lastRunTimestamp
|
||||||
|
name: LastRunTimestamp
|
||||||
|
type: string
|
||||||
|
- jsonPath: .spec.benchmarkVersion
|
||||||
|
name: BenchmarkVersion
|
||||||
|
type: string
|
||||||
|
subresources:
|
||||||
|
status: {}
|
||||||
|
schema:
|
||||||
|
openAPIV3Schema:
|
||||||
|
properties:
|
||||||
|
spec:
|
||||||
|
properties:
|
||||||
|
benchmarkVersion:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
lastRunTimestamp:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
reportJSON:
|
||||||
|
nullable: true
|
||||||
|
type: string
|
||||||
|
type: object
|
||||||
|
type: object
|
||||||
|
|
@ -12,11 +12,11 @@ annotations:
|
||||||
catalog.cattle.io/type: cluster-tool
|
catalog.cattle.io/type: cluster-tool
|
||||||
catalog.cattle.io/ui-component: rancher-cis-benchmark
|
catalog.cattle.io/ui-component: rancher-cis-benchmark
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
appVersion: v6.0.0-rc3
|
appVersion: v6.0.0-rc4
|
||||||
description: The cis-operator enables running CIS benchmark security scans on a kubernetes
|
description: The cis-operator enables running CIS benchmark security scans on a kubernetes
|
||||||
cluster
|
cluster
|
||||||
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
|
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
|
||||||
keywords:
|
keywords:
|
||||||
- security
|
- security
|
||||||
name: rancher-cis-benchmark
|
name: rancher-cis-benchmark
|
||||||
version: 6.0.0-rc3
|
version: 6.0.0-rc4
|
||||||
|
|
@ -8,7 +8,7 @@ image:
|
||||||
tag: v1.0.13
|
tag: v1.0.13
|
||||||
securityScan:
|
securityScan:
|
||||||
repository: rancher/security-scan
|
repository: rancher/security-scan
|
||||||
tag: v0.2.15
|
tag: v0.2.16-rc1
|
||||||
sonobuoy:
|
sonobuoy:
|
||||||
repository: rancher/mirrored-sonobuoy-sonobuoy
|
repository: rancher/mirrored-sonobuoy-sonobuoy
|
||||||
tag: v0.57.1
|
tag: v0.57.1
|
||||||
24
index.yaml
24
index.yaml
|
|
@ -9992,18 +9992,18 @@ entries:
|
||||||
catalog.cattle.io/type: cluster-tool
|
catalog.cattle.io/type: cluster-tool
|
||||||
catalog.cattle.io/ui-component: rancher-cis-benchmark
|
catalog.cattle.io/ui-component: rancher-cis-benchmark
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
appVersion: v6.0.0-rc3
|
appVersion: v6.0.0-rc4
|
||||||
created: "2024-06-13T10:48:43.539306907+05:30"
|
created: "2024-07-02T11:24:26.901524555+05:30"
|
||||||
description: The cis-operator enables running CIS benchmark security scans on
|
description: The cis-operator enables running CIS benchmark security scans on
|
||||||
a kubernetes cluster
|
a kubernetes cluster
|
||||||
digest: 1741ef7e2be311d63e8b0ffe90a3f46fcd356a612e18c0e83b09dfbfecc34282
|
digest: d6e45699cc24b5990e2b98d158d667a777f0afb2284b5cd661465ba5ebdeb878
|
||||||
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
|
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
|
||||||
keywords:
|
keywords:
|
||||||
- security
|
- security
|
||||||
name: rancher-cis-benchmark
|
name: rancher-cis-benchmark
|
||||||
urls:
|
urls:
|
||||||
- assets/rancher-cis-benchmark/rancher-cis-benchmark-6.0.0-rc3.tgz
|
- assets/rancher-cis-benchmark/rancher-cis-benchmark-6.0.0-rc4.tgz
|
||||||
version: 6.0.0-rc3
|
version: 6.0.0-rc4
|
||||||
- annotations:
|
- annotations:
|
||||||
catalog.cattle.io/auto-install: rancher-cis-benchmark-crd=match
|
catalog.cattle.io/auto-install: rancher-cis-benchmark-crd=match
|
||||||
catalog.cattle.io/certified: rancher
|
catalog.cattle.io/certified: rancher
|
||||||
|
|
@ -10630,6 +10630,20 @@ entries:
|
||||||
- assets/rancher-cis-benchmark/rancher-cis-benchmark-1.0.100.tgz
|
- assets/rancher-cis-benchmark/rancher-cis-benchmark-1.0.100.tgz
|
||||||
version: 1.0.100
|
version: 1.0.100
|
||||||
rancher-cis-benchmark-crd:
|
rancher-cis-benchmark-crd:
|
||||||
|
- annotations:
|
||||||
|
catalog.cattle.io/certified: rancher
|
||||||
|
catalog.cattle.io/hidden: "true"
|
||||||
|
catalog.cattle.io/namespace: cis-operator-system
|
||||||
|
catalog.cattle.io/release-name: rancher-cis-benchmark-crd
|
||||||
|
apiVersion: v1
|
||||||
|
created: "2024-07-02T11:24:26.905048731+05:30"
|
||||||
|
description: Installs the CRDs for rancher-cis-benchmark.
|
||||||
|
digest: d0b6d1521d3cc949a342607cadcddfe450388c28d361996db1c70b16517577d9
|
||||||
|
name: rancher-cis-benchmark-crd
|
||||||
|
type: application
|
||||||
|
urls:
|
||||||
|
- assets/rancher-cis-benchmark-crd/rancher-cis-benchmark-crd-6.0.0-rc4.tgz
|
||||||
|
version: 6.0.0-rc4
|
||||||
- annotations:
|
- annotations:
|
||||||
catalog.cattle.io/certified: rancher
|
catalog.cattle.io/certified: rancher
|
||||||
catalog.cattle.io/hidden: "true"
|
catalog.cattle.io/hidden: "true"
|
||||||
|
|
|
||||||
|
|
@ -12,11 +12,11 @@ annotations:
|
||||||
catalog.cattle.io/type: cluster-tool
|
catalog.cattle.io/type: cluster-tool
|
||||||
catalog.cattle.io/ui-component: rancher-cis-benchmark
|
catalog.cattle.io/ui-component: rancher-cis-benchmark
|
||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
appVersion: v6.0.0-rc3
|
appVersion: v6.0.0-rc4
|
||||||
description: The cis-operator enables running CIS benchmark security scans on a kubernetes
|
description: The cis-operator enables running CIS benchmark security scans on a kubernetes
|
||||||
cluster
|
cluster
|
||||||
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
|
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
|
||||||
keywords:
|
keywords:
|
||||||
- security
|
- security
|
||||||
name: rancher-cis-benchmark
|
name: rancher-cis-benchmark
|
||||||
version: 6.0.0-rc3
|
version: 6.0.0-rc4
|
||||||
|
|
|
||||||
|
|
@ -8,7 +8,7 @@ image:
|
||||||
tag: v1.0.13
|
tag: v1.0.13
|
||||||
securityScan:
|
securityScan:
|
||||||
repository: rancher/security-scan
|
repository: rancher/security-scan
|
||||||
tag: v0.2.15
|
tag: v0.2.16-rc1
|
||||||
sonobuoy:
|
sonobuoy:
|
||||||
repository: rancher/mirrored-sonobuoy-sonobuoy
|
repository: rancher/mirrored-sonobuoy-sonobuoy
|
||||||
tag: v0.57.1
|
tag: v0.57.1
|
||||||
|
|
|
||||||
|
|
@ -1,5 +1,5 @@
|
||||||
url: local
|
url: local
|
||||||
version: 6.0.0-rc3
|
version: 6.0.0-rc4
|
||||||
additionalCharts:
|
additionalCharts:
|
||||||
- workingDir: charts-crd
|
- workingDir: charts-crd
|
||||||
crdOptions:
|
crdOptions:
|
||||||
|
|
|
||||||
|
|
@ -130,14 +130,14 @@ rancher-backup-crd:
|
||||||
- 102.0.4+up3.1.4
|
- 102.0.4+up3.1.4
|
||||||
- 103.0.2+up4.0.2
|
- 103.0.2+up4.0.2
|
||||||
rancher-cis-benchmark:
|
rancher-cis-benchmark:
|
||||||
- 6.0.0-rc3
|
- 6.0.0-rc4
|
||||||
- 4.3.0
|
- 4.3.0
|
||||||
- 4.4.0
|
- 4.4.0
|
||||||
- 5.1.0
|
- 5.1.0
|
||||||
- 4.5.0
|
- 4.5.0
|
||||||
- 5.2.0
|
- 5.2.0
|
||||||
rancher-cis-benchmark-crd:
|
rancher-cis-benchmark-crd:
|
||||||
- 6.0.0-rc3
|
- 6.0.0-rc4
|
||||||
- 4.3.0
|
- 4.3.0
|
||||||
- 4.4.0
|
- 4.4.0
|
||||||
- 5.1.0
|
- 5.1.0
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue