From 06e13ae9cc3bffb44f1f83ffc01b2487855abe11 Mon Sep 17 00:00:00 2001 From: Christoph Hartmann Date: Thu, 6 Apr 2023 19:42:44 +0200 Subject: [PATCH] =?UTF-8?q?=F0=9F=A7=B9=20use=20new=20authors=20fields=20?= =?UTF-8?q?=20(#56)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit uses the new authors fields instead of including author in the name of the query pack --- core/mondoo-aws-incident-response.mql.yaml | 5 ++- core/mondoo-aws-inventory.mql.yaml | 5 ++- core/mondoo-gcp-inventory.mql.yaml | 5 ++- core/mondoo-github-incident-response.mql.yaml | 5 ++- core/mondoo-github-inventory.mql.yaml | 13 +++++-- ...ndoo-kubernetes-incident-response.mql.yaml | 13 +++++-- core/mondoo-kubernetes-inventory.mql.yaml | 34 ++++++++++++++++--- core/mondoo-linux-incident-response.mql.yaml | 5 ++- core/mondoo-linux-inventory.mql.yaml | 5 ++- core/mondoo-macos-incident-response.mql.yaml | 5 ++- core/mondoo-macos-inventory.mql.yaml | 5 ++- .../mondoo-openssl-incident-response.mql.yaml | 5 ++- ...tls-certificate-incident-response.mql.yaml | 5 ++- core/mondoo-vmware-incident-response.mql.yaml | 2 +- .../mondoo-windows-incident-response.mql.yaml | 5 ++- core/mondoo-windows-inventory.mql.yaml | 5 ++- ...googleworkplace-incident-response.mql.yaml | 5 ++- extra/mondoo-okta-incident-response.mql.yaml | 5 ++- extra/mondoo-slack-incident-response.mql.yaml | 5 ++- 19 files changed, 112 insertions(+), 25 deletions(-) diff --git a/core/mondoo-aws-incident-response.mql.yaml b/core/mondoo-aws-incident-response.mql.yaml index f72f230..02b6458 100644 --- a/core/mondoo-aws-incident-response.mql.yaml +++ b/core/mondoo-aws-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-incident-response-aws - name: AWS Incident Response Pack by Mondoo + name: AWS Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: aws,cloud mondoo.com/category: security diff --git a/core/mondoo-aws-inventory.mql.yaml b/core/mondoo-aws-inventory.mql.yaml index e0e8f1a..6a024a2 100644 --- a/core/mondoo-aws-inventory.mql.yaml +++ b/core/mondoo-aws-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-asset-inventory-aws - name: AWS Asset Inventory Pack by Mondoo + name: AWS Asset Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: aws,cloud mondoo.com/category: best-practices diff --git a/core/mondoo-gcp-inventory.mql.yaml b/core/mondoo-gcp-inventory.mql.yaml index 0cde10a..554d06a 100644 --- a/core/mondoo-gcp-inventory.mql.yaml +++ b/core/mondoo-gcp-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-asset-inventory-gcp - name: GCP Asset Inventory Pack by Mondoo + name: GCP Asset Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: gcp,gcp-project,cloud mondoo.com/category: best-practices diff --git a/core/mondoo-github-incident-response.mql.yaml b/core/mondoo-github-incident-response.mql.yaml index 09de58f..47001a5 100644 --- a/core/mondoo-github-incident-response.mql.yaml +++ b/core/mondoo-github-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-incident-response-github-org - name: GitHub Organization Incident Response Pack by Mondoo + name: GitHub Organization Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: github,saas mondoo.com/category: security diff --git a/core/mondoo-github-inventory.mql.yaml b/core/mondoo-github-inventory.mql.yaml index 993f08d..fb88a97 100644 --- a/core/mondoo-github-inventory.mql.yaml +++ b/core/mondoo-github-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-github-inventory-org - name: GitHub Organization Inventory Pack by Mondoo + name: GitHub Organization Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: github,saas mondoo.com/category: best-practices @@ -66,8 +69,11 @@ packs: title: GitHub organization updated query: github.organization.updatedAt - uid: mondoo-github-inventory-user - name: GitHub User Inventory Pack by Mondoo + name: GitHub User Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: github,saas mondoo.com/category: best-practices @@ -134,6 +140,9 @@ packs: - uid: mondoo-github-inventory-repo name: GitHub Repository Inventory Pack by Mondoo version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: github,saas mondoo.com/category: best-practices diff --git a/core/mondoo-kubernetes-incident-response.mql.yaml b/core/mondoo-kubernetes-incident-response.mql.yaml index 5f5898f..c0192b2 100644 --- a/core/mondoo-kubernetes-incident-response.mql.yaml +++ b/core/mondoo-kubernetes-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-kubernetes-cluster-incident-response - name: Kubernetes Cluster Incident Response Pack by Mondoo + name: Kubernetes Cluster Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: security @@ -32,6 +35,9 @@ packs: - uid: mondoo-kubernetes-pods-incident-response name: Kubernetes Pods Incident Response Pack by Mondoo version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: security @@ -100,8 +106,11 @@ packs: podSpec["nodeName"] } - uid: mondoo-kubernetes-cronjobs-incident-response - name: Kubernetes CronJobs Incident Response Pack by Mondoo + name: Kubernetes CronJobs Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: security diff --git a/core/mondoo-kubernetes-inventory.mql.yaml b/core/mondoo-kubernetes-inventory.mql.yaml index 1c4a14d..558c82b 100644 --- a/core/mondoo-kubernetes-inventory.mql.yaml +++ b/core/mondoo-kubernetes-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-kubernetes-cluster-inventory - name: Kubernetes Cluster Inventory Pack by Mondoo + name: Kubernetes Cluster Inventory Pack version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -39,8 +42,11 @@ packs: query: | k8s.clusterroles { * } - uid: mondoo-kubernetes-pods-inventory - name: Kubernetes Pods Inventory Pack by Mondoo + name: Kubernetes Pods Inventory Pack version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -58,6 +64,9 @@ packs: - uid: mondoo-kubernetes-deployments-inventory name: Kubernetes Deployments Inventory Pack by Mondoo version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -73,8 +82,11 @@ packs: query: | k8s.deployment.containers { * } - uid: mondoo-kubernetes-cronjobs-inventory - name: Kubernetes CronJobs Inventory Pack by Mondoo + name: Kubernetes CronJobs Inventory Pack version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -92,6 +104,9 @@ packs: - uid: mondoo-kubernetes-jobs-inventory name: Kubernetes Jobs Inventory Pack by Mondoo version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -107,8 +122,11 @@ packs: query: | k8s.job.containers { * } - uid: mondoo-kubernetes-daemonsets-inventory - name: Kubernetes DaemonSets Inventory Pack by Mondoo + name: Kubernetes DaemonSets Inventory Pack version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -126,6 +144,9 @@ packs: - uid: mondoo-kubernetes-statefulsets-inventory name: Kubernetes StatefulSets Inventory Pack by Mondoo version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices @@ -141,8 +162,11 @@ packs: query: | k8s.statefulset.containers { * } - uid: mondoo-kubernetes-replicasets-inventory - name: Kubernetes ReplicaSets Inventory Pack by Mondoo + name: Kubernetes ReplicaSets Inventory Pack version: 1.1.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: kubernetes,k8s # remove k8s when v9 is released mondoo.com/category: best-practices diff --git a/core/mondoo-linux-incident-response.mql.yaml b/core/mondoo-linux-incident-response.mql.yaml index e45f5b7..d3642c9 100644 --- a/core/mondoo-linux-incident-response.mql.yaml +++ b/core/mondoo-linux-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-linux-incident-response - name: Linux Incident Response Pack by Mondoo + name: Linux Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: linux,host mondoo.com/category: security diff --git a/core/mondoo-linux-inventory.mql.yaml b/core/mondoo-linux-inventory.mql.yaml index e9a9c37..bcd67a5 100644 --- a/core/mondoo-linux-inventory.mql.yaml +++ b/core/mondoo-linux-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-linux-inventory - name: Linux Inventory Pack by Mondoo + name: Linux Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: linux,host mondoo.com/category: best-practices diff --git a/core/mondoo-macos-incident-response.mql.yaml b/core/mondoo-macos-incident-response.mql.yaml index c12b482..c28307f 100644 --- a/core/mondoo-macos-incident-response.mql.yaml +++ b/core/mondoo-macos-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-macos-incident-response - name: macOS Incident Response Pack by Mondoo + name: macOS Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: macos,host mondoo.com/category: security diff --git a/core/mondoo-macos-inventory.mql.yaml b/core/mondoo-macos-inventory.mql.yaml index 8fd8f46..894c7ba 100644 --- a/core/mondoo-macos-inventory.mql.yaml +++ b/core/mondoo-macos-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-macos-inventory - name: macOS Inventory Pack by Mondoo + name: macOS Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: macos,host mondoo.com/category: best-practices diff --git a/core/mondoo-openssl-incident-response.mql.yaml b/core/mondoo-openssl-incident-response.mql.yaml index fb4a260..b7f296e 100644 --- a/core/mondoo-openssl-incident-response.mql.yaml +++ b/core/mondoo-openssl-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-openssl-incident-response - name: OpenSSL Incident Response Pack by Mondoo + name: OpenSSL Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: linux,host mondoo.com/category: best-practices diff --git a/core/mondoo-ssl-tls-certificate-incident-response.mql.yaml b/core/mondoo-ssl-tls-certificate-incident-response.mql.yaml index 651edc5..6177cdd 100644 --- a/core/mondoo-ssl-tls-certificate-incident-response.mql.yaml +++ b/core/mondoo-ssl-tls-certificate-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-ssl-tls-certificate-incident-response - name: SSL/TLS Certificate Incident Response Pack by Mondoo + name: SSL/TLS Certificate Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: host,network mondoo.com/category: security diff --git a/core/mondoo-vmware-incident-response.mql.yaml b/core/mondoo-vmware-incident-response.mql.yaml index 05458f9..2f90ac4 100644 --- a/core/mondoo-vmware-incident-response.mql.yaml +++ b/core/mondoo-vmware-incident-response.mql.yaml @@ -1,6 +1,6 @@ packs: - uid: mondoo-vmware-incident-response - name: VMware vCenter Incident Response Pack by Mondoo + name: VMware vCenter Incident Response Pack version: "1.0.0" authors: - name: Mondoo, Inc diff --git a/core/mondoo-windows-incident-response.mql.yaml b/core/mondoo-windows-incident-response.mql.yaml index 0293f89..130794d 100644 --- a/core/mondoo-windows-incident-response.mql.yaml +++ b/core/mondoo-windows-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-windows-incident-response - name: Windows Incident Response Pack by Mondoo + name: Windows Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: windows,host mondoo.com/category: security diff --git a/core/mondoo-windows-inventory.mql.yaml b/core/mondoo-windows-inventory.mql.yaml index 83ace0e..49d8640 100644 --- a/core/mondoo-windows-inventory.mql.yaml +++ b/core/mondoo-windows-inventory.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-windows-asset-inventory - name: Windows Asset Inventory Pack by Mondoo + name: Windows Asset Inventory Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: windows,host mondoo.com/category: best-practices diff --git a/extra/mondoo-googleworkplace-incident-response.mql.yaml b/extra/mondoo-googleworkplace-incident-response.mql.yaml index 9a9d2c8..69cbc47 100644 --- a/extra/mondoo-googleworkplace-incident-response.mql.yaml +++ b/extra/mondoo-googleworkplace-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-googleworkspace-incident-response - name: Google Workspace Incident Response Pack by Mondoo + name: Google Workspace Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: google-workspace,saas mondoo.com/category: security diff --git a/extra/mondoo-okta-incident-response.mql.yaml b/extra/mondoo-okta-incident-response.mql.yaml index 393f80f..a678bc8 100644 --- a/extra/mondoo-okta-incident-response.mql.yaml +++ b/extra/mondoo-okta-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-okta-incident-response - name: Okta Incident Response Pack by Mondoo + name: Okta Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: okta-org,saas mondoo.com/category: security diff --git a/extra/mondoo-slack-incident-response.mql.yaml b/extra/mondoo-slack-incident-response.mql.yaml index 6b3df22..d833a07 100644 --- a/extra/mondoo-slack-incident-response.mql.yaml +++ b/extra/mondoo-slack-incident-response.mql.yaml @@ -1,7 +1,10 @@ packs: - uid: mondoo-slack-incident-response - name: Slack Incident Response Pack by Mondoo + name: Slack Incident Response Pack version: 1.0.0 + authors: + - name: Mondoo, Inc + email: hello@mondoo.com tags: mondoo.com/platform: slack-team,saas mondoo.com/category: security