feat: add fields used by audit scanner.

Updates the metadata.yml file with the field used to enable background audit and two mode annotations used by the audit scanner report. Signed-off-by: José Guilherme Vanz <[email protected]>
kubewarden · Jul 11, 2023 · 1c53b2a · 1c53b2a
1 parent 5826928
commit 1c53b2a
Showing 1 changed file with 15 additions and 8 deletions.
diff --git a/metadata.yml b/metadata.yml
@@ -1,8 +1,13 @@
 rules:
-- apiGroups: [""]
-  apiVersions: ["v1"]
-  resources: ["pods"]
-  operations: ["CREATE", "UPDATE"]
+  - apiGroups:
+      - ''
+    apiVersions:
+      - v1
+    resources:
+      - pods
+    operations:
+      - CREATE
+      - UPDATE
 mutating: false
 contextAware: false
 executionMode: kubewarden-wapc
@@ -11,12 +16,14 @@ annotations:
   io.artifacthub.displayName: Readonly Root Filesystem PSP
   io.artifacthub.resources: Pod
   io.artifacthub.keywords: psp, container, filesystem, volume
+  # kubewarden specific
   io.kubewarden.policy.ociUrl: ghcr.io/kubewarden/policies/readonly-root-filesystem-psp
-  # io.kubewarden.hidden-ui: "true"
-  # rest
   io.kubewarden.policy.title: readonly-root-filesystem-psp
-  io.kubewarden.policy.description: A Kubewarden policy that enforces root filesystem to be readonly
-  io.kubewarden.policy.author: "Kubewarden developers <[email protected]>"
+  io.kubewarden.policy.description: A Kubewarden policy that enforces root filesystem
+    to be readonly
+  io.kubewarden.policy.author: Kubewarden developers <[email protected]>
   io.kubewarden.policy.url: https://github.com/kubewarden/readonly-root-filesystem-psp-policy
   io.kubewarden.policy.source: https://github.com/kubewarden/readonly-root-filesystem-psp-policy
   io.kubewarden.policy.license: Apache-2.0
+  io.kubewarden.policy.category: PSP
+  io.kubewarden.policy.severity: medium