Benchmark: 5 Container Runtime Configuration


There are many security implications associated with the ways that containers are started. Some runtime parameters can be supplied that have security consequences that could compromise the host and the containers running on it. It is therefore very important to verify the way in which containers are started, and which parameters are associated with them. Container runtime configuration should be reviewed in line with organizational security policy.


Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-docker-compliance

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select 5 Container Runtime Configuration.

Run this benchmark in your terminal:

powerpipe benchmark run docker_compliance.benchmark.cis_v160_5

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run docker_compliance.benchmark.cis_v160_5 --share