Skip to content
Kics

updated submodule templates #198

Sign in to view logs

updated submodule templates

updated submodule templates #198

Triggered via push September 22, 2024 17:52
@HariSekhonHariSekhon
pushed 8b5bb3c
master
Status Failure
Total duration 13m 46s
Artifacts

kics.yaml

on: push
Kics  /  Kics Scan
2m 13s
Kics / Kics Scan
Fit to window
Zoom out
Zoom in

Annotations

1 error and 12 warnings
Kics / Kics Scan
KICS scan failed with exit code 50
Kics / Kics Scan
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
[HIGH] Passwords And Secrets - Generic Password: tests/conf/telegraf-graphite.conf#L121
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: tests/conf/telegraf-opentsdb.conf#L121
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: tests/docker/couchdb-docker-compose.yml#L27
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: tests/conf/telegraf-prometheus.conf#L121
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: tests/conf/telegraf-influxdb.conf#L121
Query to find passwords and secrets in infrastructure code.
[HIGH] Passwords And Secrets - Generic Password: tests/docker/elasticsearch-platinum-docker-compose.yml#L27
Query to find passwords and secrets in infrastructure code.
[HIGH] Privileged Containers Enabled: tests/docker/debian-github-docker-compose.yml#L25
Privileged containers should be used with extreme caution, they have all of the capabilities that the linux kernel offers for docker.
[HIGH] Privileged Containers Enabled: tests/docker/centos-github-docker-compose.yml#L25
Privileged containers should be used with extreme caution, they have all of the capabilities that the linux kernel offers for docker.
[HIGH] Privileged Containers Enabled: tests/docker/ubuntu-github-docker-compose.yml#L25
Privileged containers should be used with extreme caution, they have all of the capabilities that the linux kernel offers for docker.
[HIGH] Privileged Containers Enabled: tests/docker/alpine-github-docker-compose.yml#L25
Privileged containers should be used with extreme caution, they have all of the capabilities that the linux kernel offers for docker.
Kics / Kics Scan
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/