Skip to content

Lab9 submission: Basanov Maxim#9

Open
scruffyscarf wants to merge 1 commit intomainfrom
feature/lab9
Open

Lab9 submission: Basanov Maxim#9
scruffyscarf wants to merge 1 commit intomainfrom
feature/lab9

Conversation

@scruffyscarf
Copy link
Owner

@scruffyscarf scruffyscarf commented Oct 27, 2025

Goal

Detect suspicious container behavior with Falco and enforce deployment hardening via policy-as-code using Conftest (Rego) β€” all runnable locally.

Changes

Added labs/lab9/analysis/conftest-compose.txt
Added labs/lab9/analysis/conftest-hardened.txt
Added labs/lab9/analysis/conftest-unhardened.txt
Added labs/lab9/falco/logs/falco.log
Added labs/lab9/falco/rules/custom-rules.yaml
Added labs/lab9/submission9.md

Testing

No testing

Artifacts & Screenshots

labs/lab9
β”œβ”€β”€ analysis
β”‚   β”œβ”€β”€ conftest-compose.txt
β”‚   β”œβ”€β”€ conftest-hardened.txt
β”‚   └── conftest-unhardened.txt
β”œβ”€β”€ falco
β”‚   β”œβ”€β”€ logs
β”‚   β”‚   └── falco.log
β”‚   └── rules
β”‚       └── custom-rules.yaml
β”œβ”€β”€ manifests
β”‚   β”œβ”€β”€ compose
β”‚   β”‚   └── juice-compose.yml
β”‚   └── k8s
β”‚       β”œβ”€β”€ juice-hardened.yaml
β”‚       └── juice-unhardened.yaml
β”œβ”€β”€ policies
β”‚   β”œβ”€β”€ compose-security.rego
β”‚   └── k8s-security.rego
└── submission9.md

Checklist

  • Task 1 β€” Falco runtime detection (alerts + custom rule)
  • Task 2 β€” Conftest policies (failβ†’pass hardening)
  • PR has a clear and descriptive title
  • Documentation has been updated if necessary
  • No sensitive data or large temporary files have been committed

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@scruffyscarf