Skip to content

Commit

Permalink
Merge pull request #538 from vardhaman22/revert-cis-1.9
Browse files Browse the repository at this point in the history 
[release/v1.3] revert cis-1.9 templates
  • Loading branch information
@vardhaman22
vardhaman22 authored Dec 9, 2024
2 parents c9f5bbf + 2f84b1a commit 79cc763
Show file tree
Hide file tree
Showing 12 changed files with 9 additions and 48 deletions.
4 changes: 2 additions & 2 deletions chart/Chart.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,11 +12,11 @@ annotations:
catalog.cattle.io/type: cluster-tool
catalog.cattle.io/ui-component: rancher-cis-benchmark
apiVersion: v1
appVersion: v7.1.0
appVersion: v7.1.1
description: The cis-operator enables running CIS benchmark security scans on a kubernetes
cluster
icon: https://charts.rancher.io/assets/logos/cis-kube-bench.svg
keywords:
- security
name: rancher-cis-benchmark
version: 7.1.0
version: 7.1.1
8 changes: 3 additions & 5 deletions chart/app-readme.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,15 +18,13 @@ This chart installs the following components:

| Source | Kubernetes distribution | scan profile | Kubernetes versions |
|--------|-------------------------|--------------------------------------------------------------------------------------------------------------------|---------------------|
| CIS | any | [cis-1.9](https://github.com/aquasecurity/kube-bench/tree/main/cfg/cis-1.9) | v1.27+ |
| CIS | any | [cis-1.8](https://github.com/aquasecurity/kube-bench/tree/main/cfg/cis-1.8) | v1.26 |
| CIS | any | [cis-1.8](https://github.com/aquasecurity/kube-bench/tree/main/cfg/cis-1.8) | v1.26+ |
| CIS | rke | [rke-cis-1.8-permissive](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/rke-cis-1.8-permissive) | rke1-v1.26+ |
| CIS | rke | [rke-cis-1.8-hardened](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/rke-cis-1.8-hardened) | rke1-v1.26+ |
| CIS | rke2 | [rke2-cis-1.8-permissive](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/rke2-cis-1.8-permissive) | rke2-v1.26+ |
| CIS | rke2 | [rke2-cis-1.8-hardened](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/rke2-cis-1.8-hardened) | rke2-v1.26+ |
| CIS | k3s | [k3s-cis-1.9](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/k3s-cis-1.9) | k3s-v1.27+ |
| CIS | k3s | [k3s-cis-1.8-permissive](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/k3s-cis-1.8-permissive) | k3s-v1.26 |
| CIS | k3s | [k3s-cis-1.8-hardened](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/k3s-cis-1.8-hardened) | k3s-v1.26 |
| CIS | k3s | [k3s-cis-1.8-permissive](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/k3s-cis-1.8-permissive) | k3s-v1.26+ |
| CIS | k3s | [k3s-cis-1.8-hardened](https://github.com/rancher/security-scan/tree/release/v0.5/package/cfg/k3s-cis-1.8-hardened) | k3s-v1.26+ |
| CIS | eks | [eks-1.2.0](https://github.com/aquasecurity/kube-bench/tree/main/cfg/eks-1.2.0) | eks |
| CIS | aks | [aks-1.0](https://github.com/aquasecurity/kube-bench/tree/main/cfg/aks-1.0) | aks |
| CIS | gke | [gke-1.2.0](https://github.com/aquasecurity/kube-bench/tree/main/cfg/gke-1.2.0) | gke-1.20 |
Expand Down
1 change: 0 additions & 1 deletion chart/templates/benchmark-cis-1.8.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,3 @@ metadata:
spec:
clusterProvider: ""
minKubernetesVersion: "1.26.0"
maxKubernetesVersion: "1.26.x"
8 changes: 0 additions & 8 deletions chart/templates/benchmark-cis-1.9.yaml
View file

This file was deleted.

1 change: 0 additions & 1 deletion chart/templates/benchmark-k3s-cis-1.8-hardened.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,3 @@ metadata:
spec:
clusterProvider: k3s
minKubernetesVersion: "1.26.0"
maxKubernetesVersion: "1.26.x"
1 change: 0 additions & 1 deletion chart/templates/benchmark-k3s-cis-1.8-permissive.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,4 +6,3 @@ metadata:
spec:
clusterProvider: k3s
minKubernetesVersion: "1.26.0"
maxKubernetesVersion: "1.26.x"
8 changes: 0 additions & 8 deletions chart/templates/benchmark-k3s-cis-1.9.yaml
View file

This file was deleted.

4 changes: 2 additions & 2 deletions chart/templates/configmap.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -14,5 +14,5 @@ data:
eks: "eks-profile"
gke: "gke-profile-1.6.0"
aks: "aks-profile"
k3s: "k3s-cis-1.9-profile"
default: "cis-1.9-profile"
k3s: "k3s-cis-1.8-profile-permissive"
default: "cis-1.8-profile"
9 changes: 0 additions & 9 deletions chart/templates/scanprofile-cis-1.9.yaml
View file

This file was deleted.

9 changes: 0 additions & 9 deletions chart/templates/scanprofile-k3s-cis-1.9.yaml
View file

This file was deleted.

2 changes: 1 addition & 1 deletion chart/values.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@
image:
cisoperator:
repository: rancher/cis-operator
tag: v1.3.3
tag: v1.3.4
securityScan:
repository: rancher/security-scan
tag: v0.5.2
Expand Down
2 changes: 1 addition & 1 deletion tests/k3s-bench-test.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,5 +4,5 @@ metadata:
name: k3s-e2e-scan
namespace: cis-operator-system
spec:
scanProfileName: k3s-cis-1.9-profile
scanProfileName: k3s-cis-1.8-profile-permissive
scoreWarning: pass

0 comments on commit 79cc763

Please sign in to comment.