-
Notifications
You must be signed in to change notification settings - Fork 1.2k
/
base.yaml
56 lines (56 loc) · 1.59 KB
/
base.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
schemaVersion: "1.0.0"
fileExistenceTests:
# Basic FS sanity checks.
- name: root
path: '/'
shouldExist: true
- name: tmp
path: '/tmp'
shouldExist: true
- name: passwd
path: '/etc/passwd'
shouldExist: true
- name: group
path: '/etc/group'
shouldExist: true
- name: etc-os-release
path: '/etc/os-release'
shouldExist: true
- name: certs
path: '/etc/ssl/certs/ca-certificates.crt'
shouldExist: true
- name: certs_copyright
path: '/usr/share/doc/ca-certificates/copyright'
shouldExist: true
- name: services
path: '/etc/services'
shouldExist: true
- name: tzdata_copyright
path: '/usr/share/doc/tzdata/copyright'
shouldExist: true
- name: tzdata_zoneinfo
path: '/usr/share/zoneinfo'
shouldExist: true
- name: homedir
path: '/root'
shouldExist: true
- name: nonroot-homedir
path: '/home/nonroot'
shouldExist: true
- name: dpkg-status.d
path: '/var/lib/dpkg/status.d/libc6'
shouldExist: true
fileContentTests:
- name: 'known users'
path: '/etc/passwd'
expectedContents: ['^root:x:0:0:root:/root:/sbin/nologin\nnobody:x:65534:65534:nobody:/nonexistent:/sbin/nologin\nnonroot:x:65532:65532:nonroot:/home/nonroot:/sbin/nologin\n$']
- name: 'known groups'
path: '/etc/group'
expectedContents: ['^root:x:0:\nnobody:x:65534:\ntty:x:5:\nstaff:x:50:\nnonroot:x:65532:\n$']
- name: '/usr/lib/os-release pretty name'
path: '/usr/lib/os-release'
expectedContents: ['PRETTY_NAME="Distroless"']
# /etc/os-release is a symlink to /usr/lib/os-release, make sure they match.
- name: '/etc/os-release pretty name'
path: '/etc/os-release'
expectedContents: ['PRETTY_NAME="Distroless"']