First off, very cool platform. Thanks for making it available to us!
I’ve encountered an issue with the nginx container challenge.
After adding the
cap_drop key to
docker-compose.yml and dropping
"ALL" the test errors and gives the following traceback.
- [i] Running security tests - Traceback (most recent call last): - File "/drone/src/test/security.py", line 28, in <module> - if len(dc['services']['nginx']['cap_add']) > 4: - KeyError: 'cap_add'
I’ve added an empty
cap_add key to make it happy.
I haven’t passed this one yet as I’m stuck on:
- [i] Running security tests - [e] nginx has unnecessary capabilities: CHOWN
which I’m a bit baffled by.