github.com/devseccon/trivy@v0.47.1-0.20231123133102-bd902a0bd996/pkg/fanal/external/testdata/deny/docker.rego

github.com/devseccon/trivy@v0.47.1-0.20231123133102-bd902a0bd996/pkg/fanal/external/testdata/deny/docker.rego (about)

     1  package testdata.xyz_200
     2  
     3  __rego_metadata__ := {
     4  	"id": "XYZ-200",
     5  	"title": "Old FROM",
     6  	"version": "v1.0.0",
     7  	"severity": "LOW",
     8  	"type": "Docker Security Check",
     9  }
    10  
    11  __rego_input__ := {
    12  	"combine": false,
    13  	"selector": [{"type": "dockerfile"}],
    14  }
    15  
    16  deny[res] {
    17      stage := input.Stages[_]
    18      stage.Name == "alpine:3.10"
    19  	msg := "Old image"
    20  	res := {
    21  	    "msg": msg,
    22  	    "startline": 1,
    23  	    "endline": 2,
    24  	}
    25  }