The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "kicsResults.json". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@v2, actions/upload-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.

CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/

Namespaces like 'default', 'kube-system' or 'kube-public' should not be used

Namespaces like 'default', 'kube-system' or 'kube-public' should not be used

Namespaces like 'default', 'kube-system' or 'kube-public' should not be used

Images should be specified together with their digests to ensure integrity

Containers should be configured with an AppArmor profile to enforce fine-grained access control over low-level system resources

Each namespace should have a LimitRange policy associated to ensure that resource allocations of Pods, Containers and PersistentVolumeClaims do not exceed the defined boundaries

Each namespace should have a ResourceQuota policy associated to limit the total amount of resources Pods, Containers and PersistentVolumeClaims can consume

Container should not use secrets as environment variables

Container should not use secrets as environment variables