iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-034-controller_manager_service_account_private_key_file_argument_is_set/iam/034-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-070-minimize-the-admission-of-root-containers/iam/070-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-038-scheduler_profiling_argument_is_set_to_false/iam/038-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-080-memory_limits_are_set/iam/080-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-018-apiserver_audit_log_maxage_argument_is_set_to_30/iam/018-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-054-minimize_the_admission_of_containers_which_use_hostports/iam/054-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-017-apiserver_audit_log_path_argument_is_set/iam/017-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-081-sys_admin_capability_is_not_used/iam/081-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-054-minimize_the_admission_of_containers_which_use_hostports/iam/054-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-011-apiserver_admission_control_plugin_alwayspullimages_is_set/iam/011-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-069-readiness_probe_is_configured/iam/069-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-044-etcd_cluster_peer_client_cert_auth_argument_is_set_to_true/iam/044-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-075-default_namespace_should_not_be_used_for_secret/iam/075-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-060-minimize_the_admission_of_hostpath_volumes/iam/060-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-068-liveness_probe_is_configured/iam/068-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-041-etcd_client_cert_auth_argument_is_set_to_true/iam/041-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-057-at_least_baseline_pod_security_level_policy_enforced_for_namespaces/iam/057-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-003-apiserver_admission_control_plugin_denyserviceexternalips_is_set/iam/003-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-080-memory_limits_are_set/iam/080-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-086-apply_security_context_to_your_pods_and_containers/iam/086-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-058-sa_tokens_are_only_mounted_where_necessary/iam/058-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-031-controller_manager_terminated_pod_gc_threshold_argument_is_set_as_appropriate/iam/031-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-019-apiserver_audit_log_maxbackup_argument_is_set_to_10/iam/019-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-012-apiserver_admission_control_plugin_securitycontextdeny_is_set/iam/012-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-002-apiserver_token_auth_file_parameter_is_not_set/iam/002-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-081-sys_admin_capability_is_not_used/iam/081-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-071-minimize_the_admission_of_containers_with_capabilities_assigned/iam/071-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-078-cpu_limits_are_set/iam/078-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-014-apiserver_admission_control_plugin_namespacelifecycle_is_set/iam/014-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-059-service_account_tokens_are_only_mounted_where_necessary_in_pods/iam/059-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-010-apiserver_admission_control_plugin_alwaysadmit_is_not_set/iam/010-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-015-apiserver_admission_control_plugin_noderestriction_is_set/iam/015-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-065-minimize_the_admission_of_containers_wishing_to_share_the_host_process_id_namespace/iam/065-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-019-apiserver_audit_log_maxbackup_argument_is_set_to_10/iam/019-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-079-memory_requests_are_set/iam/079-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-004-apiserver_kubelet_client_certificate_and_kubelet_client_key_arguments_are_set/iam/004-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-058-sa_tokens_are_only_mounted_where_necessary/iam/058-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-033-controller_manager_use_service_account_credentials_argument_is_set_to_true/iam/033-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-041-etcd_client_cert_auth_argument_is_set_to_true/iam/041-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-070-minimize-the-admission-of-root-containers/iam/070-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-006-apiserver_authorization_mode_argument_is_not_set_to_alwaysallow/iam/006-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-036-controller_manager_rotatekubeletservercertificate_argument_is_set_to_true/iam/036-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-062-minimize_the_admission_of_containers_wishing_to_share_the_host_ipc_namespace/iam/062-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-069-readiness_probe_is_configured/iam/069-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-037-controller_manager_bind_address_argument_is_set_to_127_0_0_1/iam/037-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-018-apiserver_audit_log_maxage_argument_is_set_to_30/iam/018-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-001-apiserver_anonymous_auth_argument_is_set_to_false/iam/001-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-016-apiserver_profiling_argument_is_set_to_false/iam/016-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-030-apiserver_apiserver_only_makes_use_of_strong_cryptographic_ciphers/iam/030-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-001-apiserver_anonymous_auth_argument_is_set_to_false/iam/001-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-036-controller_manager_rotatekubeletservercertificate_argument_is_set_to_true/iam/036-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-074-prefer_using_secrets_as_files_over_secrets_as_environment_variables_for_pod/iam/074-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-074-prefer_using_secrets_as_files_over_secrets_as_environment_variables_for_pod/iam/074-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-050-default_namespace_should_not_be_used_for_pods/iam/050-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-067-minimize_the_admission_of_containers_with_added_capabilities/iam/067-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-003-apiserver_admission_control_plugin_denyserviceexternalips_is_set/iam/003-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-016-apiserver_profiling_argument_is_set_to_false/iam/016-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-009-apiserver_admission_control_plugin_eventratelimit_is_set/iam/009-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-092-basic_auth_file_argument_not_set_openshift_kube_apiserver/iam/092-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-011-apiserver_admission_control_plugin_alwayspullimages_is_set/iam/011-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-062-minimize_the_admission_of_containers_wishing_to_share_the_host_ipc_namespace/iam/062-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-050-default_namespace_should_not_be_used_for_pods/iam/050-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-030-apiserver_apiserver_only_makes_use_of_strong_cryptographic_ciphers/iam/030-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-056-minimize_the_admission_of_privileged_containers/iam/056-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-079-memory_requests_are_set/iam/079-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-072-readonly_filesystem_is_configured/iam/072-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-009-apiserver_admission_control_plugin_eventratelimit_is_set/iam/009-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-013-apiserver_admission_control_plugin_serviceaccount_is_set/iam/013-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-002-apiserver_token_auth_file_parameter_is_not_set/iam/002-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-061-minimize_the_admission_of_windows_hostprocess_containers/iam/061-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-020-apiserver_audit_log_maxsize_argument_is_set_to_100/iam/020-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-044-etcd_cluster_peer_client_cert_auth_argument_is_set_to_true/iam/044-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-012-apiserver_admission_control_plugin_securitycontextdeny_is_set/iam/012-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-008-apiserver_authorization_mode_argument_includes_rbac/iam/008-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-063-minimize_the_admission_of_containers_with_allowprivilegeescalation/iam/063-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-065-minimize_the_admission_of_containers_wishing_to_share_the_host_process_id_namespace/iam/065-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-071-minimize_the_admission_of_containers_with_capabilities_assigned/iam/071-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-076-cpu_request_is_set/iam/076-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-049-seccomp_profile_is_set_to_docker_default_in_pod_definitions/iam/049-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-005-apiserver_kubelet_certificate_authority_argument_is_set/iam/005-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-066-minimize_the_admission_of_containers_with_the_net_raw_capability/iam/066-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-033-controller_manager_use_service_account_credentials_argument_is_set_to_true/iam/033-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-032-controller_manager_profiling_argument_is_set_to_false/iam/032-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-013-apiserver_admission_control_plugin_serviceaccount_is_set/iam/013-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-045-etcd_cluster_peer_auto_tls_argument_is_not_set_to_true/iam/045-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-064-minimize_the_admission_of_containers_wishing_to_share_the_host_network_namespace/iam/064-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-059-service_account_tokens_are_only_mounted_where_necessary_in_pods/iam/059-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-034-controller_manager_service_account_private_key_file_argument_is_set/iam/034-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-037-controller_manager_bind_address_argument_is_set_to_127_0_0_1/iam/037-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-042-etcd_auto_tls_argument_is_not_set_to_true/iam/042-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-063-minimize_the_admission_of_containers_with_allowprivilegeescalation/iam/063-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-014-apiserver_admission_control_plugin_namespacelifecycle_is_set/iam/014-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-045-etcd_cluster_peer_auto_tls_argument_is_not_set_to_true/iam/045-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-057-at_least_baseline_pod_security_level_policy_enforced_for_namespaces/iam/057-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-005-apiserver_kubelet_certificate_authority_argument_is_set/iam/005-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-008-apiserver_authorization_mode_argument_includes_rbac/iam/008-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-064-minimize_the_admission_of_containers_wishing_to_share_the_host_network_namespace/iam/064-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-072-readonly_filesystem_is_configured/iam/072-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-004-apiserver_kubelet_client_certificate_and_kubelet_client_key_arguments_are_set/iam/004-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-067-minimize_the_admission_of_containers_with_added_capabilities/iam/067-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-060-minimize_the_admission_of_hostpath_volumes/iam/060-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-032-controller_manager_profiling_argument_is_set_to_false/iam/032-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-056-minimize_the_admission_of_privileged_containers/iam/056-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-039-scheduler_bind_address_argument_is_set_to_127_0_0_1/iam/039-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-086-apply_security_context_to_your_pods_and_containers/iam/086-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-031-controller_manager_terminated_pod_gc_threshold_argument_is_set_as_appropriate/iam/031-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-042-etcd_auto_tls_argument_is_not_set_to_true/iam/042-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-075-default_namespace_should_not_be_used_for_secret/iam/075-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-078-cpu_limits_are_set/iam/078-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-061-minimize_the_admission_of_windows_hostprocess_containers/iam/061-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-022-apiserver_service_account_lookup_argument_is_set_to_true/iam/022-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-007-apiserver_authorization_mode_argument_includes_node/iam/007-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-006-apiserver_authorization_mode_argument_is_not_set_to_alwaysallow/iam/006-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-068-liveness_probe_is_configured/iam/068-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-021-apiserver_request_timeout_argument_is_set_as_appropriate/iam/021-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-076-cpu_request_is_set/iam/076-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-066-minimize_the_admission_of_containers_with_the_net_raw_capability/iam/066-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-092-basic_auth_file_argument_not_set_openshift_kube_apiserver/iam/092-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-010-apiserver_admission_control_plugin_alwaysadmit_is_not_set/iam/010-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-020-apiserver_audit_log_maxsize_argument_is_set_to_100/iam/020-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-038-scheduler_profiling_argument_is_set_to_false/iam/038-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-039-scheduler_bind_address_argument_is_set_to_127_0_0_1/iam/039-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-007-apiserver_authorization_mode_argument_includes_node/iam/007-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-022-apiserver_service_account_lookup_argument_is_set_to_true/iam/022-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-021-apiserver_request_timeout_argument_is_set_as_appropriate/iam/021-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-049-seccomp_profile_is_set_to_docker_default_in_pod_definitions/iam/049-policy.yaml

iam/custodian-kubernetes-permissions.yaml
terraform/on-prem/ecc-k8s-015-apiserver_admission_control_plugin_noderestriction_is_set/iam/015-policy.yaml

iam/custodian-openshift-permissions.yaml
terraform/on-prem/ecc-k8s-017-apiserver_audit_log_path_argument_is_set/iam/017-policy.yaml