From 55df92eacd408033d6ea0c5beb1702559b2b1e72 Mon Sep 17 00:00:00 2001
From: github-actions <github-actions@github.com>
Date: Mon, 7 Nov 2022 10:23:08 +0000
Subject: [PATCH] add auto-generated datastudio csv

---
 policies/datastudio.csv | 212 ++++++++++++++++++++--------------------
 1 file changed, 106 insertions(+), 106 deletions(-)

diff --git a/policies/datastudio.csv b/policies/datastudio.csv
index b55d0489..8063c004 100644
--- a/policies/datastudio.csv
+++ b/policies/datastudio.csv
@@ -1,127 +1,127 @@
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Running As Root','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_DATABASE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_DEFAULT_USER','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Prohibit Environment Variable - MYSQL_ALLOW_EMPTY_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Using Hostpath','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SESSIONSECRET','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Read Only Root Filesystem','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_LOGS','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SSL_ENABLED','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_SERVER','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Service','Services Restrict Protocols','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Owner Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_BASICAUTH_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Pod','Prohibit Naked Pods From Being Scheduled','False','False','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Host IPC','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_PASSWORD_FILE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_BASEURL','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Part Of Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Process Namespace','False','True','True''False','False','False','False','False','False','False'
 'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SCHEMA_DIR','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.reliability','Deployment,StatefulSet,ReplicaSet,ReplicationController,HorizontalPodAutoscaler','Containers Minimum Replica Count','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_DEFAULT_VHOST','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Mounting Docker Socket','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_DB','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_PLUGINS_EXPAND_DIR','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','ServiceAccount','Disable ServiceAccount Token Automount In Specific Namespace','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_INITDB_SKIP_TZINFO','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Host PID','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_ADMINUSERNAME','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.capacity-management','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Should Not Run On Kubernetes Control Plane Nodes','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_USER','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_DEFAULT_PASS','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_INITDB_WALDIR','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - PGDATA','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Block Ssh Port','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Should Not Run In Namespace','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_USER','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_USERNAME','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_ADMIN_TOKEN','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Using Hostpath','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Prohibit Environment Variable - MARIADB_ALLOW_EMPTY_PASSWORD','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_BASICAUTH_USERNAME','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_PID_FILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_DATABASE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.reliability','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Liveness Probe','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_MNESIA_BASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Running As Root','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Version Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Block Workloads Created Without Specifying Namespace','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_COOKIESECRET','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Running In Privileged Mode','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_VERIFY','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_GENERATED_CONFIG_DIR','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Service','Services Prohibit Ports Range','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_RETENTION','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_MNESIA_DIR','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Namespace','Prohibit Creating Namespace Starting With Prefix','False','False','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_REQUEST_SIZE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Running With Unapproved Linux Capabilities','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Host Network','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Controller ServiceAccount Tokens Automount','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_PLUGINS_DIR','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_USERNAME','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Block Ports Range','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_DATABASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_CONFIG_FILE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Read Only Root Filesystem','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','ServiceAccount','Disable ServiceAccount Token Automount In Specific Namespace','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_BUCKET','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Block Sysctls','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_LOGS','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_USER','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.software-supply-chain','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Prohibit Image Tag','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SSL_CRT_PATH','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_USER','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_USERNAME','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_ONETIME_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Enforce Restart Policy','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_FAIL_IF_NO_PEER_CERT','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SESSIONSECRET','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.reliability','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Startup Probe','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Host PID','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_OPTIONS_EDITORTHEME','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_ENABLED_PLUGINS_FILE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Component Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_KEYFILE','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_CACERTFILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Using Hostport','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_BASEURL','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.data-protection','PersistentVolume','Persistent Volume Reclaim Policy Should Be Set To Retain','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_COOKIESECRET','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Process Namespace','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_DB','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_DATABASE','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Running With Privilege Escalation','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_CONFIG_FILE','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Prohibit Environment Variable - MYSQL_ALLOW_EMPTY_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_VERIFY','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Not Using Runtime Default Seccomp Profile','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_ADMINPASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_DATABASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_INITDB_WALDIR','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_INITDB_SKIP_TZINFO','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - PGDATA','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_ADMINUSERNAME','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Block Ports Range','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Owner Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Prohibit Environment Variable - MYSQL_ALLOW_EMPTY_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Mounting Docker Socket','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.data-protection','PersistentVolume','Persistent Volume Reclaim Policy Should Be Set To Retain','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_DATABASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.reliability','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Readiness Probe','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Service','Services Prohibit Type','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Block Sysctls CVE-2022-0811','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Version Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Service','Services Prohibit Ports Range','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_RANDOM_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Prohibit Environment Variable - MARIADB_ALLOW_EMPTY_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_ORG','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_CERTFILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_ENABLED_PLUGINS_FILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_OPTIONS_EDITORTHEME','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Should Not Run In Namespace','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_VM_MEMORY_HIGH_WATERMARK','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.reliability','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Liveness Probe','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_INITDB_SKIP_TZINFO','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SSL_ENABLED','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_BASICAUTH_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SERVER_ADDITIONAL_ERL_ARGS','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Managed By Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_ADMINPASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_PORT','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Not Using Runtime Default Seccomp Profile','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_INITDB_ARGS','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','ClusterRoleBinding','Rbac Protect Cluster Admin Clusterrolebindings','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Running As User','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_DEFAULT_PASS','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_INITDB_SKIP_TZINFO','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Running With Unapproved Linux Capabilities','False','True','True''False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_USERNAME_FILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','NetworkPolicy','Block All Egress Traffic','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Security Context','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Controller ServiceAccount Tokens Automount','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_HOST_AUTH_METHOD','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','ClusterRoleBinding','Prometheus Clusterrolebinding Has Incorrect Bindings','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_MNESIA_BASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_USERNAME','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.capacity-management','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Should Not Run On Kubernetes Control Plane Nodes','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.software-supply-chain','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Image Pull Policy','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Enforce Restart Policy','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_INITDB_SKIP_TZINFO','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_INITDB_SKIP_TZINFO','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Security Context','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_MNESIA_DIR','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_CERTFILE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_PID_FILE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_DATABASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_DATABASE','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SSL_KEY_PATH','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_RANDOM_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Part Of Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_GENERATED_CONFIG_DIR','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Pod','Prohibit Naked Pods From Being Scheduled','False','False','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_DEFAULT_VHOST','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Service','Services Restrict Protocols','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_RANDOM_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Block Ssh Port','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Instance Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Running As User','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Block Sysctls','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.reliability','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Startup Probe','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_DEFAULT_USER','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Using Hostport','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_ORG','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_LOG_BASE','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.network-security','NetworkPolicy','Block All Ingress Traffic','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_DEPTH','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_USER','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','NetworkPolicy','Block All Egress Traffic','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_PLUGINS_DIR','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Created By Label','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Host Network','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','ClusterRole','Prometheus Rbac Prohibit Verbs','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_USER','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.reliability','Deployment,StatefulSet,ReplicaSet,ReplicationController,HorizontalPodAutoscaler','Containers Minimum Replica Count','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.organizational-standards','Namespace','Prohibit Creating Namespace Starting With Prefix','False','False','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_RANDOM_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Block Workloads Created Without Specifying Namespace','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Managed By Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SSL_KEY_PATH','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Sharing Host IPC','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_VM_MEMORY_HIGH_WATERMARK','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.software-supply-chain','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Container Prohibit Image Tag','False','True','True''False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MYSQL Enforce Environment Variable - MYSQL_ONETIME_PASSWORD','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_SITE_SSL_CRT_PATH','False','True','False','False','False','False','False','False','False','False'
+'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_SERVER','False','True','False','False','False','False','False','False','False','False'
 'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_ENABLE_ADMIN','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MARIADB_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Mongo-Express Enforce Environment Variable - ME_CONFIG_MONGODB_PORT','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_KEYFILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_FAIL_IF_NO_PEER_CERT','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','InfluxDB Enforce Environment Variable - DOCKER_INFLUXDB_INIT_BUCKET','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SSL_DEPTH','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MongoDB Enforce Environment Variable - MONGO_INITDB_ROOT_PASSWORD_FILE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_INITDB_ARGS','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Missing Kubernetes App Component Label','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.network-security','Service','Services Prohibit Type','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','ClusterRoleBinding','Rbac Protect Cluster Admin Clusterrolebindings','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','MariaDB Enforce Environment Variable - MYSQL_ROOT_PASSWORD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.access-control','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Postgres Enforce Environment Variable - POSTGRES_HOST_AUTH_METHOD','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_LOG_BASE','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.reliability','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Missing Readiness Probe','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.pod-security','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','Containers Running In Privileged Mode','False','True','True''False','False','False','False','False','False','False'
-'weave.categories.access-control','ClusterRole','Prometheus Rbac Prohibit Verbs','False','True','False','False','False','False','False','False','False','False'
-'weave.categories.organizational-standards','Deployment,Job,ReplicationController,ReplicaSet,DaemonSet,StatefulSet,CronJob','RabbitMQ Enforce Environment Variable - RABBITMQ_SERVER_ADDITIONAL_ERL_ARGS','False','True','False','False','False','False','False','False','False','False'