Security Scans #111
odubajDTsecurity-scans.yml
on: workflow_dispatch
Prepare Security Scans
1m 26s
Matrix: Govulncheck
Matrix: Security Scans
Matrix: Trivy
Create GitHub Issue
0s
Annotations
14 warnings
|
Govulncheck (klt-cert-manager)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Govulncheck (lifecycle-operator)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Govulncheck (scheduler)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Govulncheck (metrics-operator)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
[LOW] IAM Access Analyzer Not Enabled:
scans/lifecycle-operator-manifest-test/release.yaml#L2866
IAM Access Analyzer should be enabled and configured to continuously monitor resource permissions
|
|
[LOW] IAM Access Analyzer Not Enabled:
scans/scheduler-manifest-test/release.yaml#L1
IAM Access Analyzer should be enabled and configured to continuously monitor resource permissions
|
|
[LOW] IAM Access Analyzer Not Enabled:
scans/certificate-operator-manifest-test/release.yaml#L1
IAM Access Analyzer should be enabled and configured to continuously monitor resource permissions
|
|
[LOW] IAM Access Analyzer Not Enabled:
scans/metrics-operator-manifest-test/release.yaml#L1
IAM Access Analyzer should be enabled and configured to continuously monitor resource permissions
|
|
[LOW] Image Pull Policy Of The Container Is Not Set To Always:
scans/metrics-operator-manifest-test/release.yaml#L1440
Image Pull Policy of the container must be defined and set to Always
|
|
[LOW] Image Without Digest:
scans/lifecycle-operator-manifest-test/release.yaml#L6021
Images should be specified together with their digests to ensure integrity
|
|
[LOW] Image Without Digest:
scans/certificate-operator-manifest-test/release.yaml#L237
Images should be specified together with their digests to ensure integrity
|
|
[LOW] Image Without Digest:
scans/metrics-operator-manifest-test/release.yaml#L1440
Images should be specified together with their digests to ensure integrity
|
|
[LOW] Image Without Digest:
scans/scheduler-manifest-test/release.yaml#L268
Images should be specified together with their digests to ensure integrity
|
|
[LOW] Root Container Not Mounted Read-only:
scans/lifecycle-operator-manifest-test/release.yaml#L6042
Check if the root container filesystem is not being mounted read-only.
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
images
Expired
|
139 MB |
|
|
kics-results
Expired
|
12.2 KB |
|
|
manifests
Expired
|
320 KB |
|