Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / mondoohq/cnspec-policies issues and pull requests

#101 - πŸ› fix typos in linux workstation policy

Pull Request - State: closed - Opened by atomic111 almost 2 years ago

#100 - 🧹 release policies workflow

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#99 - πŸ› fix yaml issues detected by new linter

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#98 - Fix typos in policies

Pull Request - State: closed - Opened by tas50 almost 2 years ago

#97 - Add certificate expiration check for k8s-ingress

Pull Request - State: closed - Opened by joelddiaz almost 2 years ago - 2 comments

#96 - πŸ› update tags for gcp policy

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#95 - ⭐️ add additional tags to policies

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#94 - 🧹 use cnspec for bundle validate

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#93 - 🧹 Update the file extension of chef policies

Pull Request - State: closed - Opened by tas50 almost 2 years ago

#91 - fix remediation for mac nfs test

Pull Request - State: closed - Opened by atomic111 almost 2 years ago

#90 - terraform GKE policies: they pass when a config block is missing

Issue - State: open - Opened by czunker almost 2 years ago
Labels: bug, terraform

#89 - GitHub policy: Add check for dependabot for GH Actions

Issue - State: closed - Opened by tas50 almost 2 years ago

#88 - 🧹 Rework of Linux related queries focusing on robustness and using native resources

Pull Request - State: closed - Opened by mm-weber almost 2 years ago - 2 comments

#87 - Linux baseline: Ensure mail transfer agent is configured for local-only mode error

Issue - State: closed - Opened by tas50 almost 2 years ago - 1 comment
Labels: bug, linux

#86 - 🧹 improve slack policy

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#85 - Ignore SLACKBOT

Pull Request - State: closed - Opened by frozen425 almost 2 years ago - 3 comments

#84 - 🧹 improve slack policy

Pull Request - State: closed - Opened by chris-rock almost 2 years ago

#83 - Bump actions/checkout from 2 to 3

Pull Request - State: closed - Opened by dependabot[bot] about 2 years ago
Labels: dependencies

#82 - Add spellcheck github action + dependabot our actions

Pull Request - State: closed - Opened by tas50 about 2 years ago

#81 - 🧹 remove unused flag is_public

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#80 - Fix spacing and typos in policies

Pull Request - State: closed - Opened by tas50 about 2 years ago

#79 - Improve format of descriptions + titles in new policies

Pull Request - State: closed - Opened by tas50 about 2 years ago

#78 - Aide in Ubuntu 22.04 had a new setting for cronjob

Pull Request - State: closed - Opened by tschuchort about 2 years ago - 4 comments

#77 - ⭐️ google workspace security policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#76 - ⭐️ slack security policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#75 - introduce impact and smaller fixes

Pull Request - State: closed - Opened by atomic111 about 2 years ago

#73 - 🧹 Updated queries in Kubernetes Policies regarding 'ephemeralContainers'

Pull Request - State: closed - Opened by mm-weber about 2 years ago - 2 comments

#69 - πŸ› Fix kubelet config control

Pull Request - State: closed - Opened by imilchev about 2 years ago

#68 - add CVE numbers to openssl policy

Pull Request - State: closed - Opened by atomic111 about 2 years ago

#67 - 🧹 add mql file extension

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#66 - 🧹 align openssl vulnerability policy file name to policy name

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#65 - add openssl vuln policy

Pull Request - State: closed - Opened by atomic111 about 2 years ago

#64 - Adds new controls for software updates

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#63 - Fixes asset filtering on Terraform policies

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#62 - πŸ“„ Add 'why' and refs to k8s best practices

Pull Request - State: closed - Opened by czunker about 2 years ago - 1 comment

#61 - Linux Security: `Ensure login and logout events are collected` fails on Debian

Issue - State: closed - Opened by tas50 about 2 years ago - 3 comments
Labels: bug, linux

#60 - fix remediation shell script for system accounts are non login

Pull Request - State: closed - Opened by atomic111 about 2 years ago

#59 - adjust severity for and ssh-permituserenvironment and ssh-x11-forwarding

Pull Request - State: closed - Opened by atomic111 about 2 years ago - 1 comment

#58 - correct the remediation for the ssh private host key it must 600

Pull Request - State: closed - Opened by atomic111 about 2 years ago - 2 comments

#57 - πŸ› Add remediation to some controls

Pull Request - State: closed - Opened by czunker about 2 years ago

#56 - πŸ› Fix application of probe controls

Pull Request - State: closed - Opened by czunker about 2 years ago

#55 - fixes aws.iam check to ensure only one key is active

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#54 - Improve /etc/ file docs on Linux

Pull Request - State: closed - Opened by tas50 about 2 years ago

#53 - All Kubernetes policies need descriptions that explain why the control is important

Issue - State: closed - Opened by tas50 about 2 years ago - 1 comment

#52 - Kubernetes Security policy missing remediation steps

Issue - State: closed - Opened by tas50 about 2 years ago

#51 - Linux Policy: `Ensure ICMP redirects are not accepted` remediation fails on Debian

Issue - State: closed - Opened by tas50 about 2 years ago - 3 comments

#50 - Linux Security: `Ensure IP forwarding is disabled` control remediation fails on Debian

Issue - State: closed - Opened by tas50 about 2 years ago - 2 comments

#47 - allow setting annnotation (per-UID)

Pull Request - State: closed - Opened by joelddiaz about 2 years ago

#46 - 🧹 update uids for linux policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#45 - 🧹 update windows policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#44 - πŸ› Fix flaky gcp terraform query.

Pull Request - State: closed - Opened by preslavgerchev about 2 years ago

#43 - Updates policy overviews

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#42 - Updates header tags in README for consistency

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#41 - Adds updated overview for AWS Security by Mondoo

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#39 - 🧹 improve query ids for dns policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#38 - 🧹 improve query ids for tls policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#37 - Update CLA message and allow list

Pull Request - State: closed - Opened by benr about 2 years ago

#36 - Point to what we mean in yaml in more places

Pull Request - State: closed - Opened by tas50 about 2 years ago

#35 - πŸ› Fail when auditd config file not present

Pull Request - State: closed - Opened by czunker about 2 years ago - 1 comment

#34 - πŸ› Fixes PKI/SSL check for minikube

Pull Request - State: closed - Opened by czunker about 2 years ago - 2 comments

#33 - Add CLA Action

Pull Request - State: closed - Opened by benr about 2 years ago

#32 - Adds initial commit of Microsoft Azure Security by Mondoo

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#31 - πŸ› Prevent k8s API scan errors with empty default policy

Pull Request - State: closed - Opened by czunker about 2 years ago - 1 comment

#30 - πŸ› remove duplicated query

Pull Request - State: closed - Opened by chris-rock about 2 years ago - 1 comment

#29 - Validate policies in a GitHub action

Pull Request - State: closed - Opened by tas50 about 2 years ago - 2 comments

#28 - Fix more typos

Pull Request - State: closed - Opened by tas50 about 2 years ago

#27 - More improvements to wording in policies

Pull Request - State: closed - Opened by tas50 about 2 years ago

#26 - update readme, and community links & improve wording for extra policies

Pull Request - State: closed - Opened by chris-rock about 2 years ago - 1 comment

#25 - More wording improvements to AWS Policy

Pull Request - State: closed - Opened by tas50 about 2 years ago

#24 - Improve wording in AWS policy

Pull Request - State: closed - Opened by tas50 about 2 years ago

#23 - 🧹 simplify windows policy uid

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#22 - 🧹 harmonize policy uids

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#21 - 🧹 change policies with severity to worst scoring

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#20 - πŸ› fix property specs in linux policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#19 - Adds Mondoo GCP security policy and gitignore

Pull Request - State: closed - Opened by scottford-io about 2 years ago - 1 comment

#18 - 🧹 merge TLS and TLS certificate policies into one policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#17 - re-titling kubernetes-security policy

Pull Request - State: closed - Opened by joelddiaz about 2 years ago - 1 comment

#16 - 🧹 simplify uid for the macos policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#15 - ⭐️ add linux workstation policy

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#14 - 🧹 update linux policy with new properties

Pull Request - State: closed - Opened by chris-rock about 2 years ago

#13 - ⭐️ sys_admin, hostport, and hostpath checks

Pull Request - State: closed - Opened by joelddiaz about 2 years ago - 1 comment

#12 - Standardize cnspec default policy naming

Pull Request - State: closed - Opened by scottford-io about 2 years ago

#11 - ⭐️ add extra queries to mondoo k8s security policy

Pull Request - State: closed - Opened by joelddiaz about 2 years ago - 2 comments

#10 - Don't error checking /etc/shadow if it's not there

Pull Request - State: closed - Opened by tas50 about 2 years ago - 1 comment

#9 - ⭐️ Add more k8s controls to Mondoo policies

Pull Request - State: closed - Opened by imilchev about 2 years ago

#8 - Sync policy updates from the Mondoo repo

Pull Request - State: closed - Opened by tas50 about 2 years ago

#7 - updates scoring system and severity for github baseline

Pull Request - State: closed - Opened by scottford-io about 2 years ago - 1 comment

#6 - Update mondoo cli -> cnspec cli

Pull Request - State: closed - Opened by tas50 about 2 years ago

#5 - Remove use of --token in GH policy

Pull Request - State: closed - Opened by tas50 about 2 years ago

#4 - Adds new core policies for various default targets

Pull Request - State: closed - Opened by scottford-io about 2 years ago - 1 comment

#3 - Updates AWS baseline with new controls, docs, and metadata

Pull Request - State: closed - Opened by scottford-io about 2 years ago - 1 comment

#2 - Add policies for securing Chef products

Pull Request - State: closed - Opened by tas50 about 2 years ago - 1 comment

#1 - Adds initial commit of core policies

Pull Request - State: closed - Opened by scottford-io about 2 years ago