Skip to content

updated submodule templates #204

updated submodule templates

updated submodule templates #204

Triggered via push September 22, 2024 17:48
Status Failure
Total duration 4m 36s
Artifacts

kics.yaml

on: push
Fit to window
Zoom out
Zoom in

Annotations

1 error and 12 warnings
Kics / Kics Scan
KICS scan failed with exit code 50
Kics / Kics Scan
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
[HIGH] Passwords And Secrets - Generic Password: ambari_blueprints/hostmappings-hdfs-yarn-hbase-ha.json#L3
Query to find passwords and secrets in infrastructure code.
[HIGH] Serverless Function Without Unique IAM Role: gcp_cloud_function_sql_export/serverless.yml#L119
Serverless Function should not share IAM Role to ensure it will have the minimum privileges needed to perform the required tasks
[MEDIUM] Container Capabilities Unrestricted: tests/docker/presto-dev-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/apache-drill-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/elasticsearch-elastic.co-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/registry-docker-compose.yml#L18
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/presto-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/apache-drill-docker-compose.yml#L29
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/hbase-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/elasticsearch-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
Kics / Kics Scan
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/