Skip to content
Kics

updated kubectl_pods_dump_all.sh #1092

# to view logs

updated kubectl_pods_dump_all.sh

updated kubectl_pods_dump_all.sh #1092

Triggered via push August 29, 2024 07:05
@HariSekhonHariSekhon
pushed 4d78bfb
master
Status Cancelled
Total duration 2m 23s
Artifacts

kics.yaml

on: push
Kics  /  Kics Scan
1m 56s
Kics / Kics Scan
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 11 warnings
Kics / Kics Scan
Canceling since a higher priority waiting request for 'refs/heads/master-Kics' exists
Kics / Kics Scan
KICS scan failed with exit code 50
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3596
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3512
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3476
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Container Is Privileged: vagrant-configs/kubernetes/calico.yaml#L3521
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
[HIGH] Non Kube System Pod With Host Mount: kubernetes-configs/jenkins/base/agent.cloud-pod-DooD.yaml#L123
A non kube-system workload should not have hostPath mounted
[HIGH] Non Kube System Pod With Host Mount: kubernetes-configs/jenkins/base/agent.statefulset-DooD.yaml#L231
A non kube-system workload should not have hostPath mounted
[HIGH] Passwords And Secrets - Generic Password: docker-compose/wordpress.yml#L37
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: docker-compose/wordpress.yml#L27
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: docker-compose/concourse.yml#L44
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: kubernetes-configs/sonarqube/base/values.yaml#L257
Query to find passwords and secrets in infrastructure code.
Kics / Kics Scan
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/