Scan Helm Charts #563
Annotations
10 errors and 2 warnings
scan
CKV_K8S_13: "Memory limits should be set"
|
scan
CKV_K8S_29: "Apply security context to your pods and containers"
|
scan
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
|
scan
CKV_K8S_12: "Memory requests should be set"
|
scan
CKV_K8S_22: "Use read-only filesystem for containers where possible"
|
scan
CKV_K8S_37: "Minimize the admission of containers with capabilities assigned"
|
scan
CKV_K8S_20: "Containers should not run with allowPrivilegeEscalation"
|
scan
CKV_K8S_10: "CPU requests should be set"
|
scan
CKV_K8S_43: "Image should use digest"
|
scan
CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"
|
scan
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
scan
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|