openscap icon indicating copy to clipboard operation
openscap copied to clipboard
verified publisher icon OpenSCAP

Introduce bootc remediation type

Open jan-cerny opened this issue 1 year ago • 0 comments

This PR introduces support for new remediation type "bootc".

Remediations of this type will be generated only internally by the future oscap-bootc script. They aren't supposed to be generated by any user.

The format of this remediation will be similar to "kickstart" remediation. However, only package installation and removal will be supported and different keywords will be used. Currently supported commands:

  • dnf install package_name
  • dnf remove package_name

Having a new remediation type instead of reusing "kickstart" will help us create SCAP content specific for the needs of bootable containers.

This PR is strongly connected to this PR: https://github.com/ComplianceAsCode/content/pull/12497

jan-cerny avatar Oct 11 '24 16:10 jan-cerny