search

falcosecurity / falcoctl

Administrative tooling for Falco
Apache License 2.0
82 stars 57 forks source link

Parse requirements and dependencies from rulesfile when in tar.gz format #505

Open alacuku opened 3 months ago

alacuku commented 3 months ago

What would you like to be added:

PR #467 introduces a new feature that automatically parses requirements and dependencies from a rulesfiles when pushing to a registry. Example of requirements and dependecies in the config layer:

❯ falcoctl artifact config k8saudit-rules | jq
{
  "name": "k8saudit-rules",
  "version": "0.7.0",
  "dependencies": [
    {
      "name": "json",
      "version": "0.7.0"
    },
    {
      "name": "k8saudit",
      "version": "0.7.0",
      "alternatives": [
        {
          "name": "k8saudit-eks",
          "version": "0.4.0"
        }
      ]
    }
  ],
  "requirements": [
    {
      "name": "engine_version_semver",
      "version": "0.15.0"
    }
  ]
}

The next step is to extend the feature to support rulesfiles when provided in tar.gz format. If the rulesfile is compressed we uncompress it in a temporary directory, parse the file, and then remove the temporary files.

Why is this needed:

441

mapkon commented 3 months ago

Can someone assign this issue to me?

alacuku commented 3 months ago

/assign @mapkon

loresuso commented 2 weeks ago

Hi @mapkon, how is this proceeding? Mind if I assign this to me?

mapkon commented 1 week ago

Go ahead