do not use reuseable workflow, simplify it #4
create-release.yml
on: push
scan_helm
/
Kics Helm Chart Scan
27s
CodeQL
/
Analyze CodeQL
1m 24s
Linting
/
Nest Lint
54s
Tests and Sonarcloud
/
Tests and Sonarcloud
6m 6s
release_helm
/
release
9s
Publish image and scan with trivy
/
Publish image to ghcr.io
1m 9s
Publish image and scan with trivy
/
...
/
Trivy Scan
38s
Annotations
11 warnings
[MEDIUM] CPU Requests Not Set:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L21
CPU requests should be set to ensure the sum of the resource requests of the scheduled Containers is less than the capacity of the node
|
[MEDIUM] CPU Requests Not Set:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L21
CPU requests should be set to ensure the sum of the resource requests of the scheduled Containers is less than the capacity of the node
|
[MEDIUM] Container Running As Root:
charts/dbildungs-iam-server/templates/redis-deployment.yaml#L21
Containers should only run as non-root user. This limits the exploitability of security misconfigurations and restricts an attacker's possibilities in case of compromise
|
[MEDIUM] Container Running With Low UID:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L81
Check if containers are running with low UID, which might cause conflicts with the host's user table.
|
[MEDIUM] Container Running With Low UID:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L21
Check if containers are running with low UID, which might cause conflicts with the host's user table.
|
[MEDIUM] Container Running With Low UID:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L21
Check if containers are running with low UID, which might cause conflicts with the host's user table.
|
[MEDIUM] Container Running With Low UID:
charts/dbildungs-iam-server/templates/redis-deployment.yaml#L43
Check if containers are running with low UID, which might cause conflicts with the host's user table.
|
[MEDIUM] Container Running With Low UID:
charts/dbildungs-iam-server/templates/redis-deployment.yaml#L43
Check if containers are running with low UID, which might cause conflicts with the host's user table.
|
[MEDIUM] Memory Requests Not Defined:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L21
Memory requests should be defined for each container. This allows the kubelet to reserve the requested amount of system resources and prevents over-provisioning on individual nodes
|
[MEDIUM] Memory Requests Not Defined:
charts/dbildungs-iam-server/templates/deployment-backend.yaml#L21
Memory requests should be defined for each container. This allows the kubelet to reserve the requested amount of system resources and prevents over-provisioning on individual nodes
|
release_helm / release
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
Artifacts
Produced during runtime
Name | Size | |
---|---|---|
test-artifacts
Expired
|
628 KB |
|