Update GitLab policy to work with the new group name

Works with either now. Signed-off-by: Tim Smith <[email protected]>
mondoohq · Sep 17, 2023 · d2b892a · d2b892a
1 parent fda67d7
commit d2b892a
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/core/mondoo-gitlab-security.mql.yaml b/core/mondoo-gitlab-security.mql.yaml
@@ -13,7 +13,7 @@ policies:
       desc: "## Overview\n\nThe GitLab Security by Mondoo policy bundle provides guidance for establishing minimum recommended security and operational best practices for GitLab. This policy is early access.\n\n## Remote scan\n\nRemote scans use native transports in `cnspec` to provide on demand scan results without the need to install any agents, or integration. \n\nFor a complete list of native transports run: \n\n```bash\ncnspec scan --help\n``` \n\n### Prerequisites\n\nRemote scans of GitLab requires a [personal access token](https://docs.gitlab.com/ee/user/profile/personal_access_tokens.html) with access to the group.\n\n### Run a scan of a GitLab group\n\nOpen a terminal and configure an environment variable with your GitLab personal access token:\n\n```bash\nexport GITLAB_TOKEN=<your personal access token> \n```\n\nRun a remote scan of your GitLab group: \n\n```bash\ncnspec scan gitlab --group <group_name>\n```      \n  \n## Join the community!\n\nOur goal is to build policies that are simple to deploy, accurate, and actionable. \n\nIf you have any suggestions on how to improve this policy, or if you need support, [join the community](https://github.com/orgs/mondoohq/discussions) in GitHub Discussions."
     groups:
       - title: GitLab
-        filters: asset.platform == "gitlab"
+        filters: asset.platform == "gitlab" || asset.name == "gitlab-group"
         checks:
           - uid: mondoo-gitlab-security-private-group
           - uid: mondoo-gitlab-security-private-projects