remove pem file from sensitive file extensions (#157)

goodwithtech · Sep 14, 2021 · a80c45b · a80c45b
1 parent 4e1ad0d
commit a80c45b
Show file tree

Hide file tree

Showing 3 changed files with 1 addition and 3 deletions.
diff --git a/pkg/assessor/credential/credential.go b/pkg/assessor/credential/credential.go
@@ -83,7 +83,6 @@ func (a CredentialAssessor) RequiredExtensions() []string {
  return []string{
  ".key",
  ".secret",
- ".pem",
  ".p12",
  ".pkcs12",
  ".pfx",

diff --git a/pkg/scanner/scan_test.go b/pkg/scanner/scan_test.go
@@ -20,7 +20,6 @@ import (
 
 func TestScanImage(t *testing.T) {
  log.InitLogger(false, false)
- AddAcceptanceExtensions([]string{"pem"})
  testcases := map[string]struct {
  imageName string
  fileName string

diff --git a/pkg/types/checkpoint.go b/pkg/types/checkpoint.go
@@ -63,7 +63,7 @@ var TitleMap = map[string]string{
  UseAptGetUpdateNoCache: "Do not use update instructions alone in the Dockerfile",
  CheckSuidGuid: "Confirm safety of setuid/setgid files",
  UseCOPY: "Use COPY instead of ADD in Dockerfile",
- AvoidCredential: "Do not store credential in ENVIRONMENT vars/files",
+ AvoidCredential: "Do not store credential in environment variables/files",
  AvoidSudo: "Avoid sudo command",
  AvoidSensitiveDirectoryMounting: "Avoid sensitive directory mounting",
  AvoidDistUpgrade: `Avoid "apt-get dist-upgrade"`,