-
### Discussed in https://github.com/aquasecurity/trivy/discussions/5174
Originally posted by **Mo0rBy** September 13, 2023
### Description
I have found that there are a lot of false positiv…
-
**What would you like to be added**:
After a discussion with Vedran Lerenc and Jessica Katz, the following observations and ideas for improvements to the [Landing Page](https://gardener.cloud/) were …
-
**Environment**
Platform: k3s 1.24.11+k3s1 with nginx ingress, neuvector 5.1.2, Ubuntu 22.04
**Describe the bug**
Compliance template in GUI is empty
**To Reproduce**
Steps to reproduce the b…
-
Containers shouldn't run with privilege escalation to root in your Kubernetes cluster.
The AllowPrivilegeEscalation attribute controls whether a process can gain more privileges than its parent proces…
-
**Describe the solution you'd like**
At Acquia we’re currently using this component as part of our globally distributed Kubernetes infrastructure.
Like most providers, we expend a lot of effort en…
-
**Is your feature request related to a problem? Please describe.**
We are using NeuVector solution in our on-premises K8s clusters.
These clusters are deployed via Rancher. Thus, they have Rancher K…
-
### Please select the type of request
Enhancement
### Tell us more
**Describe the request**
- All the containers the Splunk Operator for Kubernetes uses or deploy needs to honor a readonly root fi…
-
## Overview
[Compliance Operator](https://github.com/openshift/compliance-operator) is a tool to validate that a cluster infrastructure complies with standard such as NIST SP 800-53, HIPAA or C…
-
## Expected Behavior
I'd like an option to pass secret values as files when appending `_FILE` after the current environment variable used for the value.
This behavior is consistent w…
-
## Update
My take is that we should help people pass some compliance tests etc, even though it doesn't improve security in this case. There could be some edge case where use of service accounts can…