Lance Bragstad
Lance Bragstad
https://github.com/ComplianceAsCode/content/pull/12216 included an extra assertion file for 4.2.yml which we don't need. Likely a typo for 4.12.yml, which was included in the same commit.
Let's use a newer version of Golang so we can keep dependencies up-to-date.
We have a results server that exposes a TLS 1.2 endpoint. This is fine today, but pulling this from a more authoritative source, like the OpenShift API server is better...
We set the version across multiple container images, which are ultimately set as tags in an image registry. Right now, we manage this manually, which is prone to getting outdated...
Downward metrics can be exploited, add a rule to make sure it's disabled.
Let's isolate the CEL functional tests into their own suite to reduce overall e2e integration test times. We'll take similar measures with other features/functionality by breaking them into their own...
We already have a config/samples directory with example resources that users can reference to understand how things work conceptually. Let's reuse this for the CustomRule feature and add a README.md...
- **CMP-3728: Move platform helper functions to utils** - **CMP-3728: Improve ScanSetting validation logic for remediations**
Konflux already builds the compliance operator content and pushes it to Quay. This means we don't need to setup duplicate Github Actions to maintain the content and push it to...
- **Add parameter for obsolete sshd configuration options** - **Only check ssh protocol if openssh < 7.0** - **Only check UsePrivilegeSeparation if openssh < 7.5**