StackRox · Schema

StackRox Security Policy

A security policy definition in the StackRox platform

ComplianceContainer SecurityKubernetesOpen SourceRuntime ProtectionSecurity

Properties

Name Type Description
id string
name string
description string
rationale string
remediation string
enabled boolean
categories array
lifecycleStages array
severity string
enforcementActions array
View JSON Schema on GitHub

JSON Schema

stackrox-policy-schema.json Raw ↑ 
{
  "$schema": "http://json-schema.org/draft-07/schema#",
  "$id": "https://stackrox.io/schemas/policy",
  "title": "StackRox Security Policy",
  "description": "A security policy definition in the StackRox platform",
  "type": "object",
  "properties": {
    "id": { "type": "string" },
    "name": { "type": "string" },
    "description": { "type": "string" },
    "rationale": { "type": "string" },
    "remediation": { "type": "string" },
    "enabled": { "type": "boolean" },
    "categories": { "type": "array", "items": { "type": "string" } },
    "lifecycleStages": {
      "type": "array",
      "items": { "type": "string", "enum": ["BUILD", "DEPLOY", "RUNTIME"] }
    },
    "severity": { "type": "string", "enum": ["LOW_SEVERITY", "MEDIUM_SEVERITY", "HIGH_SEVERITY", "CRITICAL_SEVERITY"] },
    "enforcementActions": { "type": "array", "items": { "type": "string" } }
  },
  "required": ["id", "name", "enabled"]
}