Allow multiple control files to add the same reference type #12165
Conversation
|
Start a new ephemeral environment with changes proposed in this pull request: Fedora Environment Oracle Linux 8 Environment |
|
🤖 A k8s content image for this PR is available at: Click here to see how to deploy itIf you alread have Compliance Operator deployed: Otherwise deploy the content and operator together by checking out ComplianceAsCode/compliance-operator and: |
yuumasato
force-pushed
the
add_references_from_multiple_control_files
branch
from
115f3fc
to
4246142
Compare
The build system is currently limited to a single ref type per control file. Two cotnrol files cannot add the same reference type. With this commit, the references added by the control file are tracked separately from the references loaded from the rule.yml. This allows us to differentiate references coming from the rule, and references coming from the control file.
yuumasato
force-pushed
the
add_references_from_multiple_control_files
branch
from
4246142
to
927aeaf
Compare
|
Code Climate has analyzed commit 927aeaf and detected 0 issues on this pull request. The test coverage on the diff in this pull request is 93.3% (50% is the threshold). This pull request will bring the total coverage in the repository to 59.4% (0.0% change). View more on Code Climate. |
Mab879
changed the title
|
Waving the Automatus tests for this PR as they are not applicable for this change. |
Description:
Rule.control_referencesRule.control_referencesis merged intoRule.references.This still allows us to ensure that references are not cross added from rules and control files.
To test this add, for example,
bsi: APP.4.4.A9to any OCP rule.Rationale:
Review Hints:
gh co 12161git cherry-pick 927aeafe9f6f129c993191ecf140c88d5b0b0796./build_product -d ocp4general_namespace_separationhas two BSI references: