All, I got a really good question on my blog [1] and I'm wondering if anybody else has started down this path? In a nutshell, the Docker CIS benchmark looks for files in certain place, etc so it's really targeted towards Docker, but I don't see any reason why we couldn't take it and build an equivalent for Podman. Not sure when I might have time to tackle this, but figured it was worth seeing if anybody had started any work around this? [1]: http://crunchtools.com/meeting-cis-benchmark/ Best Regards Scott M -- -- Moving Wordpress, Mediawiki and Request Tracker into containers: http://crunchtools.com/a-hackers-guide-to-moving-linux-services-into-cont... -- Scott McCarty Product Management - Containers, Red Hat Enterprise Linux & OpenShift Email: smccarty(a)redhat.com Phone: 312-660-3535 Cell: 330-807-1043 Web: http://crunchtools.com Using Azure Pipelines with Red Hat Universal Base Image and Quay.io: https://red.ht/2TvYo3Y