Scan Helm Charts #612
Annotations
10 errors and 2 warnings
|
Run checkov scan
CKV_K8S_13: "Memory limits should be set"
|
|
Run checkov scan
CKV_K8S_29: "Apply security context to your pods and containers"
|
|
Run checkov scan
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
|
|
Run checkov scan
CKV_K8S_12: "Memory requests should be set"
|
|
Run checkov scan
CKV_K8S_22: "Use read-only filesystem for containers where possible"
|
|
Run checkov scan
CKV_K8S_37: "Minimize the admission of containers with capabilities assigned"
|
|
Run checkov scan
CKV_K8S_20: "Containers should not run with allowPrivilegeEscalation"
|
|
Run checkov scan
CKV_K8S_10: "CPU requests should be set"
|
|
Run checkov scan
CKV_K8S_43: "Image should use digest"
|
|
Run checkov scan
CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"
|
|
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Upload SARIF file
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
Loading