-
Notifications
You must be signed in to change notification settings - Fork 7.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
scout: ootb policy → policy types #21028
base: main
Are you sure you want to change the base?
Conversation
✅ Deploy Preview for docsdocker ready!
To edit notification comments on pull requests, go to your Netlify site configuration. |
3e67564
to
aeaee7a
Compare
- If the **Configure** button is grayed out, it means the selected policy | ||
has no configurable parameters. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
thought: Just want to mention that the button being greyed out also means that the user already has an existing policy. We are not allowing users to create a new policy with the same configuration - they will just have two or more policies that do the same thing. The button will not be grayed out if they have deleted that policy so they can re-create it if they need to.
Don't know if it's worth mentioning any of this.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I just added a section on how to recover deleted policies... hopefully that covers this case.
aeaee7a
to
4070c89
Compare
@@ -109,31 +117,32 @@ The following policy parameters are configurable in a custom version: | |||
|
|||
For more information about configuring policies, see [Configure policies](./configure.md). | |||
|
|||
### No AGPL v3 licenses | |||
### Compliant Licenses |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
thought (non-blocking): I've noticed some of the policy types do mention their default configuration but this one doesn't. We should probably include a description here and any other policy that don't mention what it does by default. Another proposal is to take those descriptions into a new section that describes the default set of policies that new orgs get. Should keep things separated. Maybe as a next step. Don't want to block this PR.
Signed-off-by: David Karlsson <[email protected]>
4070c89
to
4976dae
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM
reflect internal requirements and standards. You can also disable a policy | ||
altogether if it isn't relevant to you. For more information, see [Configure | ||
policies](./configure.md). | ||
- [Severity-Based Vulnerability](#severity-based-vulnerability) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@dvdksn Looks like the policy names are in sentence case on the Scout website, but they are in title case here. Is this intentional?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
yes, these type names are not published yet
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
That's right. We haven't yet deployed the FE changes. Future values are based on this notion doc and some of these do not align. For example:
"Severity-Based Vulnerability" -> "Severity-based Vulnerability"
"Up-to-Date Base Images" -> "Up-to-date Base Images"
Haven't checked all.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Also can you update any other place they are shown (titles as well)
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Oh, just saw your comment
Description
Changes how policies are configured, updates naming from ootb policies to "default configurations" and "policy types"