Container-vPAV?

[fkoehne]

Idea: Maybe we also want to check a process-surrounding container as well? It's basically the same idea as before, taken another step further...

[sdibernardo]

Can you clarify what exactly is meant?

[fkoehne]

Well, there seems to be a trend of using camunda in containers, i.e. 1 process = 1 container. So, if this comes hand in hand with the dev-ops idea we will have decentralized responsibility for the containers. Checking them (or their config) may be desireable with rules such as:

• Is a decent operating system version used
• Is a cockpit installed?
• Is the port to cockpit open?
• Security config
• ...

I am not sure how far this idea carries. Looking for feedback.