26 lines
660 B
YAML
26 lines
660 B
YAML
#successMessage: Container does not have any dangerous capabilities
|
|
promptMessage: Container should not have dangerous capabilities
|
|
category: Security
|
|
target: Container
|
|
schema:
|
|
'$schema': http://json-schema.org/draft-07/schema
|
|
type: object
|
|
properties:
|
|
securityContext:
|
|
type: object
|
|
properties:
|
|
capabilities:
|
|
type: object
|
|
properties:
|
|
add:
|
|
type: array
|
|
not:
|
|
contains:
|
|
const: ALL
|
|
not:
|
|
contains:
|
|
const: SYS_ADMIN
|
|
not:
|
|
contains:
|
|
const: NET_ADMIN
|