From 398cbde41f567d745f9ff6138f7ef9ed6f968085 Mon Sep 17 00:00:00 2001
From: Thomas Stromberg <t+github@chainguard.dev>
Date: Wed, 16 Nov 2022 10:40:46 -0500
Subject: [PATCH] Add more exception for local webhook development

---
 detection/persistence/unexpected-listening-port-linux.sql | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/detection/persistence/unexpected-listening-port-linux.sql b/detection/persistence/unexpected-listening-port-linux.sql
index e6d0226..836d139 100644
--- a/detection/persistence/unexpected-listening-port-linux.sql
+++ b/detection/persistence/unexpected-listening-port-linux.sql
@@ -105,8 +105,11 @@ WHERE
     '8008,6,500,controlplane',
     '8009,6,0,java',
     '80,6,101,nginx',
+    '8443,6,500,webhook',
     '80,6,60,nginx',
+    '8008,6,500,webhook',
     '8080,6,0,coredns',
+    '8008,6,500,resolvers',
     '8080,6,0,java',
     '8086,6,0,influxd',
     '8086,6,500,controller',
@@ -130,7 +133,7 @@ WHERE
     and lp.protocol = 6
   )
   AND NOT (
-    p.name IN ('hugo', 'docker-proxy', 'rootlessport', 'nginx-ingress-c')
+    p.name IN ('hugo', 'docker-proxy', 'rootlessport', 'nginx-ingress-c', 'webhook', 'controller')
     AND lp.port > 1024
     and lp.protocol = 6
   )