Created
October 31, 2019 04:53
-
-
Save bellyjay1005/b7c8aac17c0451033eede69b3f15eb8d to your computer and use it in GitHub Desktop.
user defined anchore engine policy
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"blacklisted_images": [], | |
"comment": "Custom bundle", | |
"id": "2c53a13c-1765-11e8-82ef-23527761d060", | |
"mappings": [ | |
{ | |
"id": "c4f9bf74-dc38-4ddf-b5cf-00e9c0074611", | |
"image": { | |
"type": "tag", | |
"value": "*" | |
}, | |
"name": "default", | |
"policy_id": "48e6f7d6-1765-11e8-b5f9-8b6f228548b6", | |
"registry": "*", | |
"repository": "*", | |
"whitelist_ids": [ | |
"37fd763e-1765-11e8-add4-3b16c029ac5c" | |
] | |
} | |
], | |
"name": "Custom bundle", | |
"policies": [ | |
{ | |
"comment": "System default policy", | |
"id": "48e6f7d6-1765-11e8-b5f9-8b6f228548b6", | |
"name": "DefaultPolicy", | |
"rules": [ | |
{ | |
"action": "STOP", | |
"gate": "dockerfile", | |
"id": "ce7b8000-829b-4c27-8122-69cd59018400", | |
"params": [ | |
{ | |
"name": "ports", | |
"value": "22" | |
}, | |
{ | |
"name": "type", | |
"value": "blacklist" | |
} | |
], | |
"trigger": "exposed_ports" | |
}, | |
{ | |
"action": "WARN", | |
"gate": "dockerfile", | |
"id": "312d9e41-1c05-4e2f-ad89-b7d34b0855bb", | |
"params": [ | |
{ | |
"name": "instruction", | |
"value": "HEALTHCHECK" | |
}, | |
{ | |
"name": "check", | |
"value": "not_exists" | |
} | |
], | |
"trigger": "instruction" | |
}, | |
{ | |
"action": "WARN", | |
"gate": "vulnerabilities", | |
"id": "6b5c14e7-a6f7-48cc-99d2-959273a2c6fa", | |
"params": [ | |
{ | |
"name": "max_days_since_sync", | |
"value": "2" | |
} | |
], | |
"trigger": "stale_feed_data" | |
}, | |
{ | |
"action": "WARN", | |
"gate": "vulnerabilities", | |
"id": "3e79ea94-18c4-4d26-9e29-3b9172a62c2e", | |
"params": [], | |
"trigger": "vulnerability_data_unavailable" | |
}, | |
{ | |
"action": "WARN", | |
"gate": "vulnerabilities", | |
"id": "6063fdde-b1c5-46af-973a-915739451ac4", | |
"params": [ | |
{ | |
"name": "package_type", | |
"value": "all" | |
}, | |
{ | |
"name": "severity_comparison", | |
"value": "=" | |
}, | |
{ | |
"name": "severity", | |
"value": "medium" | |
} | |
], | |
"trigger": "package" | |
}, | |
{ | |
"action": "STOP", | |
"gate": "vulnerabilities", | |
"id": "b30e8abc-444f-45b1-8a37-55be1b8c8bb5", | |
"params": [ | |
{ | |
"name": "package_type", | |
"value": "all" | |
}, | |
{ | |
"name": "severity_comparison", | |
"value": ">" | |
}, | |
{ | |
"name": "severity", | |
"value": "medium" | |
} | |
], | |
"trigger": "package" | |
} | |
], | |
"version": "1_0" | |
} | |
], | |
"version": "1_0", | |
"whitelisted_images": [], | |
"whitelists": [ | |
{ | |
"comment": "Default global whitelist", | |
"id": "37fd763e-1765-11e8-add4-3b16c029ac5c", | |
"items": [], | |
"name": "Global Whitelist", | |
"version": "1_0" | |
} | |
] | |
} |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment