Uri Weisman
Uri Weisman
## Summary This PR modify the following: 1. CSP plugin to become benchmark agnostic. 2. Rename dataYaml to runtimeCfg ### Checklist Delete any items that are not applicable to this...
### Problem The value of clock ticks (`_SC_CLK_TCK`) is hard coded and might varies across kernel versions and hardware platforms, it would probably be best if you could read this...
Add an example for running a KSPM integration with a standalone agent on ECK.
**Bug Description** This bug is relevant for customers running KSPM on Kubernetes version v1.25 or higher. In k8s v1.25, Pod Security Policy (PSP) was removed, and setting a watcher for...
**Motivation** In the integration, we offer to install agent artifacts on Darwin. However, our current release procedure does not include the creation of binaries specifically for OSX. Furthermore, it will...
### Motivation As a **premerge** test, an integration test of Cloudbeat binary with a test GCP org can get us great coverage of the Cloudbeat functionality. ### Components - Standalone...
**Describe the bug** Cloudbeat failed to parse a Kubelet process config file as it lacks the supported extensions (JSON/YAML), even though the file is indeed a yaml file. ``` 09:33:10.542...
- 5.7.2 (Manual) rule can be implemented by looking for the following in the config file. ``` securityContext: seccompProfile: type: RuntimeDefault ``` Implementation might be similar to 5.2.6. - 5.7.4...
**Describe the bug** In a situation where a user aims to evaluate misconfigurations in two distinct Organizational Units (OUs) within the same organization, they may establish two elastic agents through...
**Motivation** Currently, we don't have visibility on whether we generate findings for the AWS-related fetchers (ELB/ECR) in the `cis_eks` benchmark. When our terraform deployment creates the EKS cluster, it does...