Is there a way to edit default audit config policies? #5719
Replies: 1 comment 2 replies
-
|
hi @data-dude you could specify the
|
Beta Was this translation helpful? Give feedback.
-
|
i installed trivy in trivy-system namespace using a helm chart. And it's in there that a configmap is created but it's empty but i realized that is for custom policies. What I want to do is modify the built in config audit policies. Many of them create noise because we have many exceptions. I'd like to add those exceptions to the built in policies. At this point it seems the only way forward is to remove the built in policies and just add my own. Though it'd be a lot nicer to just modify the existing ones. |
Beta Was this translation helpful? Give feedback.
-
|
cc @chen-keinan |
Beta Was this translation helpful? Give feedback.
-
Description
I see the default rego policies are here:
https://github.com/aquasecurity/trivy-policies/tree/main/rules/kubernetes/policies/general
If I want to update them so that they exclude certain namespaces, how do i do that?
Link
No response
Suggestions
Please provide detailed documentation on how to update the default trivy config audit policies.
Beta Was this translation helpful? Give feedback.
All reactions