From e91bc497acbcae2fbfe5ea5dc0d8be91d06ccd8b Mon Sep 17 00:00:00 2001 From: Stefan Thies Date: Wed, 5 Jun 2019 20:23:29 +0200 Subject: [PATCH] Add Sematext Monitoring & Logging agents to trusted k8s containers (#594) Please note registry.access.redhat.com/sematext/agent, registry.access.redhat.com/sematext/logagent are not available yet, but we are in the process of certification ... --- rules/k8s_audit_rules.yaml | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/rules/k8s_audit_rules.yaml b/rules/k8s_audit_rules.yaml index ce750ad9..046fcc7c 100644 --- a/rules/k8s_audit_rules.yaml +++ b/rules/k8s_audit_rules.yaml @@ -118,10 +118,16 @@ registry.access.redhat.com/openshift3/ose-sti-builder, registry.access.redhat.com/openshift3/ose-docker-builder, registry.access.redhat.com/openshift3/image-inspector, + registry.access.redhat.com/sematext/sematext-agent-docker, + registry.access.redhat.com/sematext/agent, + registry.access.redhat.com/sematext/logagent, cloudnativelabs/kube-router, istio/proxy, datadog/docker-dd-agent, datadog/agent, docker/ucp-agent, - gliderlabs/logspout] + gliderlabs/logspout + sematext/agent + sematext/logagent + sematext/sematext-agent-docker] - rule: Create Privileged Pod desc: >