Skip to content

Login to harbor earlier so we can push a base image #5

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
nolanpro wants to merge 1 commit into
base: main
Choose a base branch
from

Update deploy-pm4.yml

180c331
Select commit
Loading
Failed to load commit list.
Open

Login to harbor earlier so we can push a base image #5

Update deploy-pm4.yml
180c331
Select commit
Loading
Failed to load commit list.
Veracode Workflow App / Veracode IaC/Secrets Scanning failed Mar 12, 2025 in 1m 13s

Veracode IaC Secrets Scanning

No vulnerabilities found

Misconfigurations
TITLE                                                    	PROVIDER  	ID    	SEVERITY 
Can elevate its own privileges                           	Kubernetes	KSV001	MEDIUM  	
Default capabilities: some containers do not drop all    	Kubernetes	KSV003	LOW     	
CPU not limited                                          	Kubernetes	KSV011	LOW     	
Runs as root user                                        	Kubernetes	KSV012	MEDIUM  	
Root file system is not read-only                        	Kubernetes	KSV014	HIGH    	
CPU requests not specified                               	Kubernetes	KSV015	LOW     	
Memory requests not specified                            	Kubernetes	KSV016	LOW     	
Memory not limited                                       	Kubernetes	KSV018	LOW     	
Runs with UID <= 10000                                   	Kubernetes	KSV020	LOW     	
Runs with GID <= 10000                                   	Kubernetes	KSV021	LOW     	
Runtime/Default Seccomp profile not set                  	Kubernetes	KSV030	LOW     	
Seccomp policies disabled                                	Kubernetes	KSV104	MEDIUM  	
Container capabilities must only include NET_BIND_SERVICE	Kubernetes	KSV106	LOW     	


No secrets found

Policy Results
TYPE  	MESSAGE                                                                      
Config	Found HIGH issues in infrastructure as code: .github/templates/db.yaml: Root	
      	file system is not read-only                                                	

Policy Passed = false
View more details on Veracode Workflow App