Skip to content
KICS Scan

feat: initial revocation service added #847

Sign in to view logs

feat: initial revocation service added

feat: initial revocation service added #847

Triggered via pull request September 9, 2024 07:28
@nitin-vavdiyanitin-vavdiya
synchronize #317
Cofinity-X-Archive:feat/revocation-service
Status Failure
Total duration 1m 7s
Artifacts

kics.yml

on: pull_request
Analyze
57s
Analyze
Fit to window
Zoom out
Zoom in

Annotations

1 error and 12 warnings
Analyze
KICS scan failed with exit code 50
Analyze
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
Analyze
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
[HIGH] Privilege Escalation Allowed: charts/managed-identity-wallet/templates/vcrs-deployment.yaml#L42
Containers should not run with allowPrivilegeEscalation in order to prevent them from gaining more privileges than their parent process
[MEDIUM] API Key Exposed In Global Security (v3): docs/api/revocation-service/openapi_v001.json#L21
API Keys should not be transported over network
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L1086
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L694
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L2792
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L887
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L1409
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L3033
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L402
Objects should not accept 'additionalProperties' if it is possible
[MEDIUM] Additional Properties Too Permissive: docs/api/miw/openapi_v001.json#L1603
Objects should not accept 'additionalProperties' if it is possible