mirror of
https://github.com/falcosecurity/falco.git
synced 2025-10-22 03:49:36 +00:00
36acd6dfbf
This adds a new macro `user_known_mount_in_privileged_containers` which allows the easier user-defined exclusions for the "Mount Launched in Privileged Container" rule. This would be cleaner with the exclusions feature, but this feature is not used in the default ruleset yet, if I understand correctly. Signed-off-by: Matt Moyer <mmoyer@figma.com>