From 3640871725c802ffd23730e7ef5ec11f9c90a0c4 Mon Sep 17 00:00:00 2001
From: Leo Di Donato <leodidonato@gmail.com>
Date: Mon, 21 Jun 2021 11:22:37 +0200
Subject: [PATCH] update(rules): remove falco_hostnetwork_images list (unused)

The `falco_hostnetwork_images` list is unused.

This PR removes it to avoid the warning.

```console
When reading rules content: 1 warnings:
list falco_hostnetwork_images not refered to by any rule/macro/list
```

Signed-off-by: Leonardo Di Donato <leodidonato@gmail.com>
---
 rules/falco_rules.yaml | 13 -------------
 1 file changed, 13 deletions(-)

diff --git a/rules/falco_rules.yaml b/rules/falco_rules.yaml
index 2e160c97..89a1eae1 100644
--- a/rules/falco_rules.yaml
+++ b/rules/falco_rules.yaml
@@ -1871,19 +1871,6 @@
               container.image.repository in (falco_sensitive_mount_images) or
               container.image.repository startswith quay.io/sysdig/)
 
-# These container images are allowed to run with hostnetwork=true
-- list: falco_hostnetwork_images
-  items: [
-    gcr.io/google-containers/prometheus-to-sd,
-    gcr.io/projectcalico-org/typha,
-    gcr.io/projectcalico-org/node,
-    gke.gcr.io/gke-metadata-server,
-    gke.gcr.io/kube-proxy,
-    gke.gcr.io/netd-amd64,
-    k8s.gcr.io/ip-masq-agent-amd64
-    k8s.gcr.io/prometheus-to-sd,
-    ]
-
 # Add conditions to this macro (probably in a separate file,
 # overwriting this macro) to specify additional containers that are
 # allowed to perform sensitive mounts.