bug(rule): Missing AppArmor Profile rule outdated

[schdief]

the rule https://github.com/Checkmarx/kics/blob/master/assets/queries/k8s/missing_app_armor_config/query.rego is outdated https://github.com/kubernetes/enhancements/tree/master/keps/sig-node/24-apparmor#removing-annotation-support

proper setting should be

securityContext:
   appArmorProfile:
     type: RuntimeDefault

Expected Behavior

if new syntax is provided, rule shouldn't be violated

Actual Behavior

I get a security finding, which is not correct

Steps to Reproduce the Problem

we use Cx1, but just perform a KICS scan with the rule above and you will get an alert

Specifications

Cx1

[cx-artur-ribeiro]

Hi @schdief,
Thanks for raising the issue!

I'll evaluate it and make the necessary changes to support both the annotation-based configuration and the new securityContext.appArmorProfile syntax.

I'll tag this issue to the pull request so it will be closed once the PR is merged,and you'll be notified accordingly.

Thanks for helping us improve KICS!