-_-

DataDog · Mar 6, 2025 · b6cf02c · b6cf02c
1 parent 5a20444
commit b6cf02c
Showing 1 changed file with 2 additions and 7 deletions.
diff --git a/pkg/security/rules/engine.go b/pkg/security/rules/engine.go
@@ -380,12 +380,7 @@ func (e *RuleEngine) notifyAPIServer(ruleIDs []rules.RuleID, policies []*monitor
 func (e *RuleEngine) getCommonSECLVariables(rs *rules.RuleSet) map[string]*api.SECLVariableState {
 	var seclVariables = make(map[string]*api.SECLVariableState)
 	for name, value := range rs.GetVariables() {
-		var scope string
-		parts := strings.Split(name, ".")
-		if len(parts) > 0 {
-			scope = parts[0]
-		}
-		if scope == "process" {
+		if strings.HasPrefix(name, "process.") {
 			scopedVariable := value.(eval.ScopedVariable)
 			if !scopedVariable.IsMutable() {
 				continue
@@ -410,7 +405,7 @@ func (e *RuleEngine) getCommonSECLVariables(rs *rules.RuleSet) map[string]*api.S
 					Value: scopedValue,
 				}
 			})
-		} else if scope == "container" || scope == "cgroup" {
+		} else if strings.HasPrefix(name, "container.") || strings.HasPrefix(name, "cgroup.") {
 			continue
 		} else { // global variables
 			value, found := value.(eval.Variable).GetValue()