search

docker / docker-bench-security

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
Apache License 2.0
9.18k stars 1.02k forks source link

Definition of the assessment status #545

Open saikumark opened 11 months ago

saikumark commented 11 months ago

Hello,

The assessment results contain different statuses, i.e. WARN, INFO, PASS. Could you please document the definition of this status, in the wiki or point me to a page where we can see it?

As per my understanding, here is what I think. But please correct me if I am wrong.

PASS -> The control execution is successful and no issues are found INFO -> Just an observation can be ignored or mandated based on the organization's standards WARN -> The control execution is unsuccessful and needs to be addressed.

konstruktoid commented 11 months ago

Hi @saikumark, I believe your explanations are correct. I can add those to the documentation, or do you want to submit a PR?