Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

docker-bench-security-1.6.1-1.1 RPM for noarch

From OpenSuSE Tumbleweed for noarch

Name: docker-bench-security Distribution: openSUSE Tumbleweed
Version: 1.6.1 Vendor: openSUSE
Release: 1.1 Build date: Fri Oct 18 02:37:32 2024
Group: Productivity/Networking/Security Build host: reproducible
Size: 182074 Source RPM: docker-bench-security-1.6.1-1.1.src.rpm
Packager: https://bugs.opensuse.org
Url: https://dockerbench.com
Summary: Docker Bench for Security
 
The Docker Bench for Security is a script that checks for dozens of common
best-practices around deploying Docker containers in production.

The tests are all automated, and implement the CIS Docker Benchmark.

Provides

Requires

License

Apache-2.0

Changelog

* Fri Oct 18 2024 Aleksa Sarai <asarai@suse.com>
  - Update to docker-bench-security v1.6.1. See upstream changelog online at
    <https://github.com/docker/docker-bench-security/releases/tag/v1.6.1>.
    * Align with CIS Docker Benchmark v1.6.0.
    v1.6.0 <https://github.com/docker/docker-bench-security/releases/tag/v1.6.0>
    * Fix image sprawl miscalculation.
    * Add an option to filter out labels to exclude from checks.
    v1.5.0 <https://github.com/docker/docker-bench-security/releases/tag/v1.5.0>
    * Align with CIS Docker Benchmark v1.5.0.
    * Add support for .NanoCpus.
    v1.3.6 <https://github.com/docker/docker-bench-security/releases/tag/v1.3.6>
    * Add CIS Level 1 only functions.
    * Support user namespaces in partition check.
    * Deprecate rule 2.16 for Docker > 19.03.
    * Add checks for capabilities that allows container escape.
    * Implement listing of open ports.
    * Add 4.12 check.
  - Rather than patching the script entirely using sed (which can make updates
    error-prone), apply an actual patch to switch to using a LIBEXEC variable we
    can replace during packaging. Backport of
    <https://github.com/docker/docker-bench-security/pull/559>.
    + 0001-dist-adjust-script-imports-to-be-able-to-use-usr-lib.patch
* Thu May 07 2020 Andreas Stieger <andreas.stieger@gmx.de>
  - fix include patch of functions_lib.sh (boo#1164631)
* Mon Nov 18 2019 Andreas Stieger <andreas.stieger@gmx.de>
  - update to 1.3.5:
    * Align with CIS Docker Benchmark v1.2.0
    * Add some command line options to support specific use cases
* Thu Jan 11 2018 kbabioch@suse.com
  - update to 1.3.3:
    * Adapt to CIS Docker Community Edition Benchmark v1.1.0
    * Correct check names
    * Require Docker version 1.13.0 or later
    * Handle busybox date conversion
    * Add Docker Swarm configuration checks
* Fri May 05 2017 astieger@suse.com
  - update to 1.3.2:
    * improve get_docker_configuration_file_args()
    * add [NOTE] for informational checks with no actual tests
    * fix various tests when using daemon.json
    * use stat instead of ls -ld output
  - includes changes from 1.3.1:
    * Add daemon.json support
    * Correct multiple tests
    * Update default alpine Dockerfile
    * Use grep if auditctl isn't present
* Fri Feb 24 2017 astieger@suse.com
  - update to 1.3.0:
    * Inspired by the CIS Docker 1.13 Benchmark
    * adjust run-time package requirements
* Mon Aug 01 2016 astieger@suse.com
  - Docker Bench for Security v1.1.0:
    * check for docker 1.12.0
    * fix early-docker use
    * mention adjusting volumes
* Tue Jun 07 2016 astieger@suse.com
  - checks for docker 1.11.2, no benchmark changes
  - requires docker >= 1.10.0
* Wed May 11 2016 astieger@suse.com
  - checks for docker 1.11.1
* Mon Apr 18 2016 astieger@suse.com
  - checks implementing CIS Docker 1.11.0 Benchmark
    https://benchmarks.cisecurity.org/downloads/show-single/index.cfm?file=docker16.110
  - checks for docker 1.11.0
  - use stat to verify permissions
  - fixes for process detection

Files

/usr/bin/docker-bench-security
/usr/libexec/docker-bench-security
/usr/libexec/docker-bench-security/functions
/usr/libexec/docker-bench-security/functions/functions_lib.sh
/usr/libexec/docker-bench-security/functions/helper_lib.sh
/usr/libexec/docker-bench-security/functions/output_lib.sh
/usr/libexec/docker-bench-security/tests
/usr/libexec/docker-bench-security/tests/1_host_configuration.sh
/usr/libexec/docker-bench-security/tests/2_docker_daemon_configuration.sh
/usr/libexec/docker-bench-security/tests/3_docker_daemon_configuration_files.sh
/usr/libexec/docker-bench-security/tests/4_container_images.sh
/usr/libexec/docker-bench-security/tests/5_container_runtime.sh
/usr/libexec/docker-bench-security/tests/6_docker_security_operations.sh
/usr/libexec/docker-bench-security/tests/7_docker_swarm_configuration.sh
/usr/libexec/docker-bench-security/tests/8_docker_enterprise_configuration.sh
/usr/libexec/docker-bench-security/tests/99_community_checks.sh
/usr/share/doc/packages/docker-bench-security
/usr/share/doc/packages/docker-bench-security/README.md
/usr/share/licenses/docker-bench-security
/usr/share/licenses/docker-bench-security/LICENSE.md

Generated by rpm2html 1.8.1

Fabrice Bellet, Wed Feb 12 23:53:52 2025