Scan Helm Charts #575
Annotations
10 errors and 2 warnings
|
Run checkov scan
CKV_K8S_13: "Memory limits should be set"
|
|
Run checkov scan
CKV_K8S_29: "Apply security context to your pods and containers"
|
|
Run checkov scan
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
|
|
Run checkov scan
CKV_K8S_12: "Memory requests should be set"
|
|
Run checkov scan
CKV_K8S_22: "Use read-only filesystem for containers where possible"
|
|
Run checkov scan
CKV_K8S_37: "Minimize the admission of containers with capabilities assigned"
|
|
Run checkov scan
CKV_K8S_20: "Containers should not run with allowPrivilegeEscalation"
|
|
Run checkov scan
CKV_K8S_10: "CPU requests should be set"
|
|
Run checkov scan
CKV_K8S_43: "Image should use digest"
|
|
Run checkov scan
CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"
|
|
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Upload SARIF file
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
Loading