From 3308ca6027c9109a07a9cee41398c78695d95cc4 Mon Sep 17 00:00:00 2001
From: kooomix <eranm@armosec.io>
Date: Sun, 21 Apr 2024 11:53:52 +0300
Subject: [PATCH 1/2] Add data in rest encryption control (C-0264) to
 security.json

Signed-off-by: kooomix <eranm@armosec.io>
---
 frameworks/security.json | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/frameworks/security.json b/frameworks/security.json
index b222a467..7ee901f6 100644
--- a/frameworks/security.json
+++ b/frameworks/security.json
@@ -176,6 +176,12 @@
                 "name": "Anonymous access enabled"
             }
         },
+        {
+            "controlID": "C-0264",
+            "patch": {
+            "name": "Data in rest encryption - Persistent Volumes are encrypted (CC1.1,CC6.7)"
+            }
+        },
         {
             "controlID": "C-0265",
             "patch": {

From 24089bc1152f44ac5796f5838e0779ab536c18da Mon Sep 17 00:00:00 2001
From: kooomix <eranm@armosec.io>
Date: Sun, 21 Apr 2024 11:59:46 +0300
Subject: [PATCH 2/2] Add controlTypeTags to
 C-0262-anonymousaccessisenabled.json and update control name in security.json

Signed-off-by: kooomix <eranm@armosec.io>
---
 controls/C-0262-anonymousaccessisenabled.json | 4 ++++
 frameworks/security.json                      | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/controls/C-0262-anonymousaccessisenabled.json b/controls/C-0262-anonymousaccessisenabled.json
index c82021bd..1479170b 100644
--- a/controls/C-0262-anonymousaccessisenabled.json
+++ b/controls/C-0262-anonymousaccessisenabled.json
@@ -5,6 +5,10 @@
     "remediation": "Review and modify your cluster's RBAC configuration to ensure that only authenticated and authorized users have appropriate permissions based on their roles and responsibilities within your system.",
     "test": "Checks if ClusterRoleBinding/RoleBinding resources give permissions to anonymous user. Also checks in the apiserver if the --anonymous-auth flag is set to false",
     "attributes": {
+        "controlTypeTags": [
+            "security",
+            "compliance"
+        ]
     },
     "rulesNames": [
         "anonymous-access-enabled"
diff --git a/frameworks/security.json b/frameworks/security.json
index 7ee901f6..4f737e29 100644
--- a/frameworks/security.json
+++ b/frameworks/security.json
@@ -179,7 +179,7 @@
         {
             "controlID": "C-0264",
             "patch": {
-            "name": "Data in rest encryption - Persistent Volumes are encrypted (CC1.1,CC6.7)"
+            "name": "PersistentVolume without encyption"
             }
         },
         {