update: bump the gh-actions-packages group across 1 directory with 4 … #76
Annotations
10 errors and 1 warning
|
Scan:
deployment/deployment.yaml#L286
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
|
|
Scan:
deployment/deployment.yaml#L286
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
|
|
Scan:
deployment/deployment.yaml#L286
CKV_K8S_43: "Image should use digest"
|
|
Scan:
deployment/deployment.yaml#L286
CKV_K8S_15: "Image Pull Policy should be Always"
|
|
Scan:
deployment/deployment.yaml#L410
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
|
|
Scan:
deployment/deployment.yaml#L410
CKV_K8S_43: "Image should use digest"
|
|
Scan:
deployment/deployment.yaml#L410
CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"
|
|
Scan:
deployment/deployment.yaml#L286
CKV2_K8S_6: "Minimize the admission of pods which lack an associated NetworkPolicy"
|
|
Scan:
deployment/deployment.yaml#L410
CKV2_K8S_6: "Minimize the admission of pods which lack an associated NetworkPolicy"
|
|
Scan:
deployment/deployment.yaml#L219
CKV2_K8S_5: "No ServiceAccount/Node should be able to read all secrets"
|
|
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "cosign.pub", "sbom.cdx".
Please update your workflow to use v4 of the artifact actions.
Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/
|
Loading