pss

package
v1.12.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 3, 2024 License: Apache-2.0 Imports: 11 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func ApplyPodSecurityExclusion added in v1.12.0 

func ApplyPodSecurityExclusion(
	levelVersion *api.LevelVersion,
	excludes []kyvernov1.PodSecurityStandard,
	defaultCheckResults []pssutils.PSSCheckResult,
	pod *corev1.Pod,
) ([]pssutils.PSSCheckResult, error)

ApplyPodSecurityExclusion excludes pod security controls

func EvaluatePod 

func EvaluatePod(levelVersion *api.LevelVersion, excludes []kyvernov1.PodSecurityStandard, pod *corev1.Pod) (bool, []pssutils.PSSCheckResult)

EvaluatePod applies PSS checks to the pod and exempts controls specified in the rule

func FormatChecksPrint 

func FormatChecksPrint(checks []pssutils.PSSCheckResult) string

func GetPodWithMatchingContainers 

func GetPodWithMatchingContainers(exclude kyvernov1.PodSecurityStandard, pod *corev1.Pod) (podSpec, matching *corev1.Pod)

GetPodWithMatchingContainers extracts matching container/pod info by the given exclude rule and returns pod manifests containing spec and container info respectively

func GetRestrictedFields 

func GetRestrictedFields(check policy.Check) []pssutils.RestrictedField

Get restrictedFields from Check.ID

func ParseVersion added in v1.12.0 

func ParseVersion(level api.Level, version string) (*api.LevelVersion, error)

Types

This section is empty.

Source Files

View all Source files

Directories

Path Synopsis

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.