Skip to content

Update/dependencies #4113

Update/dependencies

Update/dependencies #4113

Triggered via pull request September 1, 2023 13:00
Status Success
Total duration 6m 17s
Artifacts 3

cicd.yaml

on: pull_request
Matrix: integration-test / integration test
Matrix: integration-test / k8s-versions
Fit to window
Zoom out
Zoom in

Annotations

10 errors and 2 warnings
sast / checkov: deployment/deployment.yaml#L3
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L26
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L42
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L56
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L117
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L138
CKV_K8S_49: "Minimize wildcard use in Roles and ClusterRoles"
sast / checkov: deployment/deployment.yaml#L174
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L195
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
sast / checkov: deployment/deployment.yaml#L195
CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"
sast / checkov: deployment/deployment.yaml#L195
CKV_K8S_21: "The default namespace should not be used"
sca / syft / dependency review
Error uploading depdendency snapshot: { "url": "https://api.github.com/repos/sse-secure-systems/connaisseur/dependency-graph/snapshots", "status": 422, "headers": { "access-control-allow-origin": "*", "access-control-expose-headers": "ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset", "connection": "close", "content-length": "293", "content-security-policy": "default-src 'none'", "content-type": "application/json; charset=utf-8", "date": "Fri, 01 Sep 2023 13:02:39 GMT", "referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin", "server": "GitHub.com", "strict-transport-security": "max-age=31536000; includeSubdomains; preload", "vary": "Accept-Encoding, Accept, X-Requested-With", "x-accepted-github-permissions": "contents=write", "x-content-type-options": "nosniff", "x-frame-options": "deny", "x-github-api-version-selected": "2022-11-28", "x-github-media-type": "github.v3; format=json", "x-github-request-id": "6100:318E:347338:6B2903:64F1E0EF", "x-ratelimit-limit": "100", "x-ratelimit-remaining": "99", "x-ratelimit-reset": "1693573419", "x-ratelimit-resource": "dependency_snapshots", "x-ratelimit-used": "1", "x-xss-protection": "0" }, "data": { "message": "invalid package url: in manifest \"ghcr.io/sse-secure-systems/connaisseur-test:sha-bd300f6:/bin/busybox\" decoding \"\": scheme is missing", "documentation_url": "https://docs.github.com/rest/dependency-graph/dependency-submission#create-a-snapshot-of-dependencies-for-a-repository" } }
sca / grype
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher

Artifacts

Produced during runtime
Name Size
cosign.pub Expired
178 Bytes
sbom.cdx Expired
663 KB
sse-secure-systems-connaisseur-test_sha-bd300f6.cyclonedx.json Expired
728 KB