Skip to content
Kics

updated git_submodules_update_repos.sh #1607

Sign in to view logs

updated git_submodules_update_repos.sh

updated git_submodules_update_repos.sh #1607

Triggered via push February 1, 2025 18:10
@HariSekhonHariSekhon
pushed 3d6852b
master
Status Failure
Total duration 15m 30s
Artifacts

kics.yaml

on: push
Kics  /  Kics Scan
3m 18s
Kics / Kics Scan
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 10 warnings
Kics / Kics Scan
KICS scan failed with exit code 50
Kics / Kics Scan
CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3476
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3512
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3521
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3596
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Non Kube System Pod With Host Mount: kubernetes-configs/jenkins/base/agent.cloud-pod-DooD.yaml#L123
A non kube-system workload should not have hostPath mounted
[HIGH] Non Kube System Pod With Host Mount: kubernetes-configs/jenkins/base/agent.statefulset-DooD.yaml#L231
A non kube-system workload should not have hostPath mounted
[HIGH] Passwords And Secrets - Generic Password: kubernetes-configs/sonarqube/base/values.yaml#L255
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: docker-compose/keycloak.yml#L38
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: docker-compose/wordpress.yml#L37
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: kubernetes-configs/jenkins/base/initial-admin-secret.patch.yaml#L34
Query to find passwords and secrets in infrastructure code.