Skip to content
Kics

Kics #195

Sign in to view logs

Kics

Kics #195

Triggered via schedule December 30, 2024 00:40
@HariSekhonHariSekhon
a1e6115
master
Status Failure
Total duration 1m 57s
Artifacts

kics.yaml

on: schedule
Kics  /  Kics Scan
1m 48s
Kics / Kics Scan
Fit to window
Zoom out
Zoom in

Annotations

1 error and 12 warnings
Kics / Kics Scan
KICS scan failed with exit code 50
Kics / Kics Scan
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
[HIGH] Missing User Instruction: tests/Dockerfile#L17
A user should be specified in the dockerfile, otherwise the image will run as root
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L1
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L1
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L1
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L20
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L20
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L20
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: tests/Dockerfile#L1
When installing a package, its pin version should be defined
[MEDIUM] Container Capabilities Unrestricted: tests/docker/hbase-docker-compose.yml#L17
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
[MEDIUM] Container Capabilities Unrestricted: tests/docker/nginx-docker-compose.yml#L18
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
Kics / Kics Scan
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/