fix: Update parameters to implement non-AAD integrated clusters in Ku… #178
ilhaan
Initialize pipeline
24s
Matrix: Run / job_psrule_test_waf_reliability
Matrix: Run / job_psrule_test_waf_security_cb
Matrix: Run / job_psrule_test
Matrix: Run / job_psrule_test_waf_security
Matrix: Run / job_module_deploy_validation
Run
/
Publishing
0s
Annotations
31 errors and 5 warnings
|
Run / PSRule - WAF Security [defaults]
AZR-000022: ***csmin001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000435: ***csmin001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule - WAF Security [defaults]
AZR-000027: ***csmin001 failed Azure.AKS.NetworkPolicy. AKS clusters without inter-pod network restrictions may be permit unauthorized lateral movement.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000030: ***csmin001 failed Azure.AKS.AuthorizedIPs. Restrict access to API server endpoints to authorized IP addresses.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000033: ***csmin001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000370: ***csmin001 failed Azure.AKS.DefenderProfile. Enable the Defender profile with Azure Kubernetes Service (AKS) cluster.
|
|
Run / PSRule - WAF Security [defaults]
One or more assertions failed. One or more rules reported failure.
|
|
Run / PSRule - WAF Security [defaults]
Process completed with exit code 1.
|
|
Run / PSRule [defaults]
AZR-000017: ***csmin001 failed Azure.AKS.PoolScaleSet. Deploy AKS clusters with nodes pools based on VM scale sets.
|
|
Run / PSRule [defaults]
AZR-000018: ***csmin001 failed Azure.AKS.NodeMinPods. Azure Kubernetes Cluster (AKS) nodes should use a minimum number of pods.
|
|
Run / PSRule [defaults]
AZR-000022: ***csmin001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule [defaults]
AZR-000023: ***csmin001 failed Azure.AKS.PlatformLogs. AKS clusters should collect platform diagnostic logs to monitor the state of workloads.
|
|
Run / PSRule [defaults]
AZR-000435: ***csmin001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule [defaults]
AZR-000027: ***csmin001 failed Azure.AKS.NetworkPolicy. AKS clusters without inter-pod network restrictions may be permit unauthorized lateral movement.
|
|
Run / PSRule [defaults]
AZR-000030: ***csmin001 failed Azure.AKS.AuthorizedIPs. Restrict access to API server endpoints to authorized IP addresses.
|
|
Run / PSRule [defaults]
AZR-000033: ***csmin001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule [defaults]
AZR-000041: ***csmin001 failed Azure.AKS.ContainerInsights. Enable Container insights to monitor AKS cluster workloads.
|
|
Run / PSRule [defaults]
AZR-000370: ***csmin001 failed Azure.AKS.DefenderProfile. Enable the Defender profile with Azure Kubernetes Service (AKS) cluster.
|
|
Run / PSRule [waf-aligned]
AZR-000022: ***cswaf001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule [waf-aligned]
AZR-000435: ***cswaf001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule [waf-aligned]
AZR-000033: ***cswaf001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule [waf-aligned]
One or more assertions failed. One or more rules reported failure.
|
|
Run / PSRule [waf-aligned]
Process completed with exit code 1.
|
|
Run / PSRule - WAF Security [waf-aligned]
AZR-000022: ***cswaf001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule - WAF Security [waf-aligned]
AZR-000435: ***cswaf001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule - WAF Security [waf-aligned]
AZR-000033: ***cswaf001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule - WAF Security [waf-aligned]
One or more assertions failed. One or more rules reported failure.
|
|
Run / PSRule - WAF Security [waf-aligned]
Process completed with exit code 1.
|
|
Run / Static validation
[-] [container-service/managed-cluster] The [main.json] ARM template should be based on the current [main.bicep] Bicep template. 3.84s (3.84s|3ms)
|
|
Run / Static validation
[-] [container-service/managed-cluster/agent-pool] The [main.json] ARM template should be based on the current [main.bicep] Bicep template. 2.64s (2.64s|1ms)
|
|
Run / Static validation
Process completed with exit code 1.
|
|
Initialize pipeline
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Run / PSRule - WAF Security - AVM Custom Baseline [waf-aligned]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Run / PSRule - WAF Reliability [waf-aligned]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Run / PSRule - WAF Reliability [defaults]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Run / PSRule - WAF Security - AVM Custom Baseline [defaults]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|