Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feat/update helm charts #44

Merged
merged 2 commits into from
Oct 26, 2023

Merge branch 'main' into feat/update-helm-charts

acff237
Select commit
Loading
Failed to load commit list.
Merged

Feat/update helm charts #44

Merge branch 'main' into feat/update-helm-charts
acff237
Select commit
Loading
Failed to load commit list.
GitHub Advanced Security / KICS succeeded Oct 24, 2023 in 5s

13 new alerts

New alerts in code changed by this pull request

  • 5 warnings
  • 8 notes

See annotations below for details.

View all branch alerts.

Annotations

Check warning on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Container Running With Low UID Warning

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.securityContext.runAsUser is set to a low UID

Check warning on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

NET_RAW Capabilities Not Being Dropped Warning

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.securityContext.capabilities.drop is undefined

Check warning on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Seccomp Profile Is Not Configured Warning

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.securityContext.seccompProfile.type is undefined

Check warning on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Service Account Token Automount Not Disabled Warning

metadata.name={kics-helm-backend}.spec.template.spec.automountServiceAccountToken is undefined

Check warning on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Using Unrecommended Namespace Warning

metadata.namespace is undefined or null

Check notice on line 104 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Container Requests Not Equal To It's Limits Note

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.resources.requests.cpu is not equal to resources.limits.cpu

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Image Pull Policy Of The Container Is Not Set To Always Note

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.imagePullPolicy relies on mutable images in cache

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Image Without Digest Note

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.image does not include an image digest

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Missing AppArmor Profile Note

metadata.name={kics-helm-backend}.spec.template.metadata.annotations does not specify an AppArmor profile for container {backend}

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

No Drop Capabilities for Containers Note

metadata.name={kics-helm-backend}.spec.containers.name={backend}.securityContext.capabilities is undefined

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Pod or Container Without LimitRange Note

metadata.name={kics-helm-backend} does not have a 'LimitRange' policy associated

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Pod or Container Without ResourceQuota Note

metadata.name={kics-helm-backend} does not have a 'ResourceQuota' policy associated

Check notice on line 1 in charts/puris/charts/backend/templates/deployment.yaml

See this annotation in the file changed.

Code scanning / KICS

Root Container Not Mounted Read-only Note

metadata.name={kics-helm-backend}.spec.template.spec.containers.name={backend}.securityContext.readOnlyRootFilesystem is undefined