exposed-ports-whitelist
Image exposes permitted ports.
| Provider | Level | Tags |
|---|---|---|
| skopeo | Warning | security |
Parameters
| Name | Default Value | Description |
|---|---|---|
allowed_ports | ['80', '443'] | n/a |
Messages
| Type | Message |
|---|---|
| Pass | All exposed ports are allowed. |
| Fail | Image exposes unauthorized ports: ${results.skopeo.platforms.0.exposed_ports}. |
Playbook Example
rules:
- provider: skopeo
rule: exposed-ports-whitelist
options:
allowed_ports:
- "80"
- "443"
Condition
{
"subset": [
{
"var": "results.skopeo.platforms.0.exposed_ports"
},
{
"var": "rule.params.allowed_ports"
}
]
}