Skip to content
Secure Code Analysis

Secure Code Analysis #435

Sign in to view logs

Secure Code Analysis

Secure Code Analysis #435

Triggered via schedule May 1, 2024 01:52
@ep-93ep-93
3f1f8f0
main
Status Failure
Total duration 7m 25s
Artifacts

code-scanning.yml

on: schedule
tfsec
1m 2s
tfsec
checkov
7m 16s
checkov
Matrix: tflint
Fit to window
Zoom out
Zoom in

Annotations

11 errors, 3 warnings, and 1 notice
tfsec
Code Scanning could not process the submitted SARIF file: SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file", SARIF URI scheme "git" did not match the checkout URI scheme "file"
checkov: terraform/environments/analytical-platform-compute/vpc.tf#L20
CKV_TF_1: "Ensure Terraform module sources use a commit hash"
checkov: terraform/environments/analytical-platform-ingestion/sns.tf#L1
CKV_TF_1: "Ensure Terraform module sources use a commit hash"
checkov: terraform/environments/analytical-platform-ingestion/sns.tf#L41
CKV_TF_1: "Ensure Terraform module sources use a commit hash"
checkov: terraform/environments/apex/ec2.tf#L25
CKV_AWS_79: "Ensure Instance Metadata Service Version 1 is not enabled"
checkov: terraform/environments/apex/ec2.tf#L145
CKV_AWS_290: "Ensure IAM policies does not allow write access without constraints"
checkov: terraform/environments/apex/ec2.tf#L145
CKV_AWS_355: "Ensure no IAM policies documents allow "*" as a statement's resource for restrictable actions"
checkov: terraform/environments/apex/efs.tf#L1
CKV_AWS_184: "Ensure resource is encrypted by KMS using a customer managed Key (CMK)"
checkov: terraform/environments/apex/efs.tf#L23
CKV_AWS_23: "Ensure every security groups rule has a description"
checkov: terraform/environments/apex/lambda.tf#L81
CKV_AWS_115: "Ensure that AWS Lambda function is configured for function-level concurrent execution limit"
checkov: terraform/environments/apex/lambda.tf#L81
CKV_AWS_272: "Ensure AWS Lambda function is configured to validate code-signing"
tflint (ubuntu-latest)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
tfsec
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
checkov
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
GitHub API token
Consider setting a GITHUB_TOKEN to prevent GitHub api rate limits