sig-bsi-grundschutz / content

Security automation content in SCAP, Bash, Ansible, and other formats
https://www.open-scap.org/security-policies/scap-security-guide
Other
7 stars 1 forks source link

APP.4.4.A16 #42

Closed sluetze closed 3 months ago

sluetze commented 6 months ago

The automation of operational tasks in operators SHOULD be used in particularly critical applications and the control plane programs.

OpenShift relies consistently on the application of the concept of operators. The platform itself is operated and managed 100% by operators, meaning that all internal components of the platform are rolled out and managed by operators.

Application-specific operators must be considered as part of application development and deployment.

sluetze commented 6 months ago

I tend to "inherently met". We could also add a manual rule to evaluate if critical applications (whatever this means) are implemented using operators.

@benruland @nrrso @ermeratos would like your feedback

sluetze commented 3 months ago

for unknown reasons this was done in https://github.com/ComplianceAsCode/content/pull/11559