update: update setuptools requirement from ~=68.1.2 to ~=68.2.2 #4128
dependabot[bot]cicd.yaml
on: pull_request
conditionals
0s
build
/
context
6s
compliance
/
ossf-scorecard
19s
compliance
/
dependency review
6s
compliance
/
check-commit-message
2s
sast
/
codeql
4m 29s
sast
/
black
10s
sast
/
pylint
30s
sast
/
bandit
31s
sast
/
hadolint
19s
sast
/
kubelinter
20s
sast
/
trivy config
42s
sast
/
checkov
44s
sast
/
semgrep
0s
unit-test
/
pytest
1m 4s
docs
/
deploy
21s
sca
/
safety
15s
sca
/
trivy image
50s
sca
/
grype
1m 1s
sca
/
...
/
dependency review
16s
Matrix: integration-test / integration test
Matrix: integration-test / k8s-versions
Annotations
10 errors and 2 warnings
|
sast / checkov:
deployment/deployment.yaml#L3
CKV_K8S_21: "The default namespace should not be used"
|
|
sast / checkov:
deployment/deployment.yaml#L26
CKV_K8S_21: "The default namespace should not be used"
|
|
sast / checkov:
deployment/deployment.yaml#L42
CKV_K8S_21: "The default namespace should not be used"
|
|
sast / checkov:
deployment/deployment.yaml#L56
CKV_K8S_21: "The default namespace should not be used"
|
|
sast / checkov:
deployment/deployment.yaml#L117
CKV_K8S_21: "The default namespace should not be used"
|
|
sast / checkov:
deployment/deployment.yaml#L138
CKV_K8S_49: "Minimize wildcard use in Roles and ClusterRoles"
|
|
sast / checkov:
deployment/deployment.yaml#L174
CKV_K8S_21: "The default namespace should not be used"
|
|
sast / checkov:
deployment/deployment.yaml#L195
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
|
|
sast / checkov:
deployment/deployment.yaml#L195
CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"
|
|
sast / checkov:
deployment/deployment.yaml#L195
CKV_K8S_21: "The default namespace should not be used"
|
|
sca / syft / dependency review
Error uploading depdendency snapshot: {
"url": "https://api.github.com/repos/sse-secure-systems/connaisseur/dependency-graph/snapshots",
"status": 422,
"headers": {
"access-control-allow-origin": "*",
"access-control-expose-headers": "ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset",
"connection": "close",
"content-length": "293",
"content-security-policy": "default-src 'none'",
"content-type": "application/json; charset=utf-8",
"date": "Wed, 13 Sep 2023 03:04:54 GMT",
"referrer-policy": "origin-when-cross-origin, strict-origin-when-cross-origin",
"server": "GitHub.com",
"strict-transport-security": "max-age=31536000; includeSubdomains; preload",
"vary": "Accept-Encoding, Accept, X-Requested-With",
"x-accepted-github-permissions": "contents=write",
"x-content-type-options": "nosniff",
"x-frame-options": "deny",
"x-github-api-version-selected": "2022-11-28",
"x-github-media-type": "github.v3; format=json",
"x-github-request-id": "E0E8:3319:162AA65:2CE38D1:650126D5",
"x-ratelimit-limit": "100",
"x-ratelimit-remaining": "99",
"x-ratelimit-reset": "1694574354",
"x-ratelimit-resource": "dependency_snapshots",
"x-ratelimit-used": "1",
"x-xss-protection": "0"
},
"data": {
"message": "invalid package url: in manifest \"ghcr.io/sse-secure-systems/connaisseur-test:sha-2be03de:/bin/busybox\" decoding \"\": scheme is missing",
"documentation_url": "https://docs.github.com/rest/dependency-graph/dependency-submission#create-a-snapshot-of-dependencies-for-a-repository"
}
}
|
|
sca / grype
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
cosign.pub
Expired
|
178 Bytes |
|
|
sbom.cdx
Expired
|
663 KB |
|
|
sse-secure-systems-connaisseur-test_sha-2be03de.cyclonedx.json
Expired
|
728 KB |
|