Skip to content

Merge pull request #70 from digitalist-se/ingress_class #185

Merge pull request #70 from digitalist-se/ingress_class

Merge pull request #70 from digitalist-se/ingress_class #185

Triggered via push September 23, 2024 10:55
Status Success
Total duration 47s
Artifacts

checkov.yaml

on: push
Fit to window
Zoom out
Zoom in

Annotations

10 errors and 2 warnings
scan
CKV_K8S_28: "Minimize the admission of containers with the NET_RAW capability"
scan
CKV_K8S_22: "Use read-only filesystem for containers where possible"
scan
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
scan
CKV_K8S_15: "Image Pull Policy should be Always"
scan
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
scan
CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"
scan
CKV_K8S_12: "Memory requests should be set"
scan
CKV_K8S_30: "Apply security context to your containers"
scan
CKV_K8S_37: "Minimize the admission of containers with capabilities assigned"
scan
CKV_K8S_13: "Memory limits should be set"
scan
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
scan
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/