8000 dir_system_commands_* remediation fixes and applicability for all products by vojtapolasek · Pull Request #13298 · ComplianceAsCode/content · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

dir_system_commands_* remediation fixes and applicability for all products #13298

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Apr 10, 2025
Merged

dir_system_commands_* remediation fixes and applicability for all products #13298

merged 3 commits into from
Apr 10, 2025

Conversation

vojtapolasek
Copy link
Collaborator

Description:

  • make remediations applicable for all products
  • fix Ansible remediaitons, see commits

Rationale:

  • discovered while running per-rule test scenarios. It showed that rules are in rhel* products but remediations are not enabled for these products.

Review Hints:

  • Use automatus.

@vojtapolasek
bash remediations: make them applicable to all products
f0a36b9
@vojtapolasek
dir_system_commands_root_owned ansible: make it applicable for all pr…
bb44d79 
…oducts

also fix typos in directory names
and set follow to yes because some of those directories (such as /bin on rhel9) can be symlinks
@vojtapolasek
dir_system_commands_group_root_owned ansible: make it along the lines…
f748a36 
… of Ansible remediation of dir_system_commands_root_owned
@vojtapolasek vojtapolasek added RHEL Red Hat Enterprise Linux product related. Ansible Ansible remediation update. Bash Bash remediation update. labels Apr 9, 2025
@vojtapolasek vojtapolasek added this to the 0.1.77 milestone Apr 9, 2025
@github-actions GitHub Actions
Copy link
github-actions bot commented Apr 9, 2025

This datastream diff is auto generated by the check Compare DS/Generate Diff

Click here to see the full diff 
New data stream adds bash remediation for rule 'xccdf_org.ssgproject.content_rule_dir_system_commands_group_root_owned'.
New data stream adds ansible remediation for rule 'xccdf_org.ssgproject.content_rule_dir_system_commands_group_root_owned'.
New data stream adds bash remediation for rule 'xccdf_org.ssgproject.content_rule_dir_system_commands_root_owned'.
New data stream adds ansible remediation for rule 'xccdf_org.ssgproject.content_rule_dir_system_commands_root_owned'.

@codeclimate CodeClimate
Copy link
codeclimate bot commented Apr 9, 2025

Code Climate has analyzed commit f748a36 and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 61.9% (0.0% change).

View more on Code Climate.

@Mab879 Mab879 self-assigned this Apr 9, 2025
Mab879
Mab879 approved these changes Apr 9, 2025
View reviewed changes
Copy link
Member
@Mab879 Mab879 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The automatus tests pass locally.

Thanks!

@Mab879
Copy link
Member
Mab879 commented Apr 10, 2025

/packit build

@Mab879 Mab879 merged commit cd3fb1f into ComplianceAsCode:master Apr 10, 2025
106 of 110 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Mab879 Mab879 Mab879 approved these changes

Assignees

@Mab879 Mab879

Labels
Ansible Ansible remediation update. Bash Bash remediation update. RHEL Red Hat Enterprise Linux product related.
Projects
None yet
Milestone
0.1.77
Development

Successfully merging this pull request may close these issues.
2 participants
@vojtapolasek @Mab879
0