[#VAL-102] Change the criticality of OS security test

[VAL-102] Change the criticality of OS security test Created: 03/Apr/20 Updated: 16/Apr/20 Resolved: 16/Apr/20
Status:	Done
Project:	Validation
Component/s:	None
Affects Version/s:	None
Fix Version/s:	None

Type:

Task

Priority:

Medium

Reporter:

Cristina Pauna

Assignee:

Daniel Stoica

Resolution:

Done

Votes:

Labels:

None

Remaining Estimate:

Not Specified

Time Spent:

Not Specified

Original Estimate:

Not Specified

Description

Currently lynis and vuls tests pass even if they find vulnerabilities. We expect the PTLs to manually check them and identify if these vulnerabilities need to be dealt with or not, so we allow the tests to have vulnerabilities. But ideally there shouldn't be any vulnerabilities on the system.

Therefore, reporting a pass status may cause confusion, so instead of just marking the test as pass make the test fail when vulnerabilities are found but mark it as non-critical (making the suite pass).

The implementation should be similar to what has been done for kube-hunter test: https://gerrit.akraino.org/r/c/validation/+/3313

Generated at Sat Feb 10 06:07:20 UTC 2024 using Jira 9.4.5#940005-sha1:e3094934eac4fd8653cf39da58f39364fb9cc7c1.

[VAL-102] Change the criticality of OS security test Created: 03/Apr/20 Updated: 16/Apr/20 Resolved: 16/Apr/20