Skip to content
Secure Code Analysis

Secure Code Analysis #387

Sign in to view logs

Secure Code Analysis

Secure Code Analysis #387

Triggered via schedule March 14, 2024 01:49
@ep-93ep-93
c25c293
main
Status Failure
Total duration 3m 0s
Artifacts

code-scanning.yml

on: schedule
tfsec
1m 27s
tfsec
checkov
2m 51s
checkov
Matrix: tflint
Fit to window
Zoom out
Zoom in

Annotations

11 errors, 3 warnings, and 1 notice
tfsec
Code Scanning could not process the submitted SARIF file: SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file"
checkov: terraform/environments/analytical-platform-ingestion/vpc.tf#L20
CKV_TF_1: "Ensure Terraform module sources use a commit hash"
checkov: terraform/environments/apex/ec2.tf#L25
CKV_AWS_79: "Ensure Instance Metadata Service Version 1 is not enabled"
checkov: terraform/environments/apex/ec2.tf#L145
CKV_AWS_290: "Ensure IAM policies does not allow write access without constraints"
checkov: terraform/environments/apex/ec2.tf#L145
CKV_AWS_355: "Ensure no IAM policies documents allow "*" as a statement's resource for restrictable actions"
checkov: terraform/environments/apex/efs.tf#L1
CKV_AWS_184: "Ensure resource is encrypted by KMS using a customer managed Key (CMK)"
checkov: terraform/environments/apex/efs.tf#L23
CKV_AWS_23: "Ensure every security groups rule has a description"
checkov: terraform/environments/apex/lambda.tf#L81
CKV_AWS_115: "Ensure that AWS Lambda function is configured for function-level concurrent execution limit"
checkov: terraform/environments/apex/lambda.tf#L81
CKV_AWS_173: "Check encryption settings for Lambda environmental variable"
checkov: terraform/environments/apex/lambda.tf#L81
CKV_AWS_50: "X-Ray tracing is enabled for Lambda"
checkov: terraform/environments/apex/lambda.tf#L81
CKV_AWS_272: "Ensure AWS Lambda function is configured to validate code-signing"
tflint (ubuntu-latest)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
tfsec
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
checkov
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
GitHub API token
Consider setting a GITHUB_TOKEN to prevent GitHub api rate limits