Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[SEC-16683] Decouple Agentless Scanning from CSPM #153

Merged
merged 5 commits into from
Nov 15, 2024
Merged

[SEC-16683] Decouple Agentless Scanning from CSPM #153

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
04a8cac
Decouple Agentless Scanning from CSPM
k3nz0 Oct 30, 2024
1594f99
Agentless requires resource collection to be enabled
k3nz0 Nov 13, 2024
c94e40b
Bump the version
k3nz0 Nov 14, 2024
faafebd
Fix the Fn::Equals syntax
k3nz0 Nov 14, 2024
77558e8
Add Agenless options to taskcat yml
k3nz0 Nov 14, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions aws_quickstart/datadog_agentless_scanning.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ Parameters:
- true
- false
Description: >-
Enable Agentless Scanning of host vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of host vulnerabilities.
Default: false

AgentlessContainerScanning:
Expand All @@ -31,7 +31,7 @@ Parameters:
- true
- false
Description: >-
Enable Agentless Scanning of container vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of container vulnerabilities.
Default: false

AgentlessLambdaScanning:
Expand All @@ -40,7 +40,7 @@ Parameters:
- true
- false
Description: >-
Enable Agentless Scanning of Lambda vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of Lambda vulnerabilities.
Default: false

AgentlessSensitiveDataScanning:
Expand All @@ -49,7 +49,7 @@ Parameters:
- true
- false
Description: >-
Enable Agentless Scanning of datastores (S3 buckets). "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of datastores (S3 buckets).
Default: false

DatadogAPIKeySecretArn:
Expand Down
11 changes: 4 additions & 7 deletions aws_quickstart/main_extended.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -92,31 +92,31 @@ Parameters:
- true
- false
Description: >-
Enable Agentless Scanning of host vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of host vulnerabilities.
Default: false
AgentlessContainerScanning:
Type: String
AllowedValues:
- true
- false
Description: >-
Enable Agentless Scanning of container vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of container vulnerabilities.
Default: false
AgentlessLambdaScanning:
Type: String
AllowedValues:
- true
- false
Description: >-
Enable Agentless Scanning of Lambda vulnerabilities. "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of Lambda vulnerabilities.
Default: false
AgentlessSensitiveDataScanning:
Type: String
AllowedValues:
- true
- false
Description: >-
Enable Agentless Scanning of datastores (S3 buckets). "CloudSecurityPostureManagement" must be set to 'true'.
Enable Agentless Scanning of datastores (S3 buckets).
Default: false
Rules:
ResourceCollectionValidState:
Expand Down Expand Up @@ -146,9 +146,6 @@ Conditions:
- Fn::Equals:
- !Ref DatadogSite
- ddog-gov.com
- Fn::Equals:
- !Ref CloudSecurityPostureManagement
- true
- Fn::Or:
- Fn::Equals:
- !Ref AgentlessHostScanning
Expand Down
Loading