Skip to content

Merge pull request #228 from andrewhsu/docker-pull #33

Merge pull request #228 from andrewhsu/docker-pull

Merge pull request #228 from andrewhsu/docker-pull #33

Triggered via push December 18, 2023 21:27
Status Failure
Total duration 50s
Artifacts

kics-iac.yml

on: push
Fit to window
Zoom out
Zoom in

Annotations

1 error and 11 warnings
kics
Process completed with exit code 1.
kics
The following actions uses node12 which is deprecated and will be forced to run on node16: actions/checkout@v2. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
[MEDIUM] CPU Limits Not Set: charts/kminion/templates/deployment.yaml#L1
CPU limits should be set because if the system has CPU time free, a container is guaranteed to be allocated as much CPU as it requests
[MEDIUM] CPU Requests Not Set: charts/kminion/templates/deployment.yaml#L1
CPU requests should be set to ensure the sum of the resource requests of the scheduled Containers is less than the capacity of the node
[MEDIUM] Container Running With Low UID: charts/kminion/templates/deployment.yaml#L33
Check if containers are running with low UID, which might cause conflicts with the host's user table.
[MEDIUM] Container Traffic Not Bound To Host Interface: docker-compose.yml#L8
Incoming container traffic should be bound to a specific host interface
[MEDIUM] Container Traffic Not Bound To Host Interface: docker-compose.yml#L43
Incoming container traffic should be bound to a specific host interface
[MEDIUM] Container Traffic Not Bound To Host Interface: docker-compose.yml#L22
Incoming container traffic should be bound to a specific host interface
[MEDIUM] Healthcheck Not Set: docker-compose.yml#L16
Check containers periodically to see if they are running properly.
[MEDIUM] Healthcheck Not Set: docker-compose.yml#L34
Check containers periodically to see if they are running properly.
[MEDIUM] Healthcheck Not Set: docker-compose.yml#L6
Check containers periodically to see if they are running properly.
[MEDIUM] Host Namespace is Shared: docker-compose.yml#L16
The hosts process namespace should not be shared by containers