aboutsummaryrefslogtreecommitdiffstats
path: root/docker/security
diff options
context:
space:
mode:
authorCédric Ollivier <cedric.ollivier@orange.com>2021-04-02 09:52:38 +0200
committerCédric Ollivier <cedric.ollivier@orange.com>2021-04-02 10:08:02 +0200
commit7e885e20067c50e93263e5268f9e6450ee6f614f (patch)
treef595f29cb2c149bcf9a7ee61688caf2765a98ce0 /docker/security
parent22dc963b3db15608165a76e44bc566d4cf8400c8 (diff)
Properly manage e2e parallel testing
It sets nodes=25 to run all tests in parallel. It also beautifies all testcases.yml Change-Id: I3ecd8899e957c0efbef34ab0409c2b4d557c9425 Signed-off-by: Cédric Ollivier <cedric.ollivier@orange.com> (cherry picked from commit 4004d776b01a1b038df52ca45b18430da1b6b1f5)
Diffstat (limited to 'docker/security')
-rw-r--r--docker/security/testcases.yaml80
1 files changed, 38 insertions, 42 deletions
diff --git a/docker/security/testcases.yaml b/docker/security/testcases.yaml
index c4f7e69b..7af54a3f 100644
--- a/docker/security/testcases.yaml
+++ b/docker/security/testcases.yaml
@@ -1,47 +1,43 @@
---
tiers:
- -
- name: security
+ - name: security
+ description: >-
+ Set of basic security tests.
+ testcases:
+ - case_name: kube_hunter
+ project_name: functest
+ criteria: 100
+ blocking: false
description: >-
- Set of basic security tests.
- testcases:
- -
- case_name: kube_hunter
- project_name: functest
- criteria: 100
- blocking: false
- description: >-
- Check that the kubernetes cluster has no known
- vulnerabilities
- run:
- name: kube_hunter
- args:
- severity: high
+ Check that the kubernetes cluster has no known
+ vulnerabilities
+ run:
+ name: kube_hunter
+ args:
+ severity: high
- -
- case_name: kube_bench_master
- project_name: functest
- criteria: 100
- blocking: false
- description: >-
- Checks whether Kubernetes is deployed securely by running
- the master checks documented in the CIS Kubernetes
- Benchmark.
- run:
- name: kube_bench
- args:
- target: master
+ - case_name: kube_bench_master
+ project_name: functest
+ criteria: 100
+ blocking: false
+ description: >-
+ Checks whether Kubernetes is deployed securely by running
+ the master checks documented in the CIS Kubernetes
+ Benchmark.
+ run:
+ name: kube_bench
+ args:
+ target: master
- -
- case_name: kube_bench_node
- project_name: functest
- criteria: 100
- blocking: false
- description: >-
- Checks whether Kubernetes is deployed securely by running
- the node checks documented in the CIS Kubernetes
- Benchmark.
- run:
- name: kube_bench
- args:
- target: node
+ - case_name: kube_bench_node
+ project_name: functest
+ criteria: 100
+ blocking: false
+ description: >-
+ Checks whether Kubernetes is deployed securely by running
+ the node checks documented in the CIS Kubernetes
+ Benchmark.
+ run:
+ name: kube_bench
+ args:
+ target: node