From af96a930eba561a8313f6ae8af779513a6c94c50 Mon Sep 17 00:00:00 2001
From: Clemence Saussez <clemence@zen.ly>
Date: Fri, 25 Mar 2022 10:00:00 +0100
Subject: [PATCH] rules(allowed_kube_namespace_image_list): add container
 threat detection image

Signed-off-by: Clemence Saussez <clemence@zen.ly>
---
 rules/k8s_audit_rules.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/rules/k8s_audit_rules.yaml b/rules/k8s_audit_rules.yaml
index 5de9a7c9..4cb89be4 100644
--- a/rules/k8s_audit_rules.yaml
+++ b/rules/k8s_audit_rules.yaml
@@ -321,6 +321,7 @@
     k8s.gcr.io/kube-apiserver,
     gke.gcr.io/kube-proxy,
     gke.gcr.io/netd-amd64,
+    gke.gcr.io/watcher-daemonset,
     k8s.gcr.io/addon-resizer
     k8s.gcr.io/prometheus-to-sd,
     k8s.gcr.io/k8s-dns-dnsmasq-nanny-amd64,