Skip to content
pr

Feat/golang #32

Sign in to view logs

Feat/golang

Feat/golang #32

Triggered via pull request March 15, 2024 12:33
@StarkteetjeStarkteetje
synchronize #1509
feat/golang
Status Failure
Total duration 5m 53s
Artifacts 3

pr.yml

on: pull_request
ci  /  conditionals
0s
ci / conditionals
ci  /  ...  /  context
5s
ci / build / context
ci  /  ...  /  ossf-scorecard
19s
ci / compliance / ossf-scorecard
ci  /  ...  /  dependency review
11s
ci / compliance / dependency review
ci  /  ...  /  check-commit-message
3s
ci / compliance / check-commit-message
ci  /  ...  /  unit tests
35s
ci / unit-test / unit tests
ci  /  ...  /  checkov
22s
ci / sast / checkov
ci  /  ...  /  codeql
0s
ci / sast / codeql
ci  /  ...  /  golangci-lint
30s
ci / sast / golangci-lint
ci  /  ...  /  gosec
4m 23s
ci / sast / gosec
ci  /  ...  /  hadolint
14s
ci / sast / hadolint
ci  /  ...  /  kubelinter
11s
ci / sast / kubelinter
ci  /  ...  /  semgrep
31s
ci / sast / semgrep
ci  /  ...  /  trivy config
29s
ci / sast / trivy config
ci  /  ...  /  deploy
16s
ci / docs / deploy
ci  /  ...  /  build
2m 10s
ci / build / build
ci  /  ...  /  trivy image
46s
ci / sca / trivy image
ci  /  ...  /  grype
37s
ci / sca / grype
ci  /  ...  /  dependency review
13s
ci / sca / syft / dependency review
Matrix: ci / integration-test / functional
Matrix: ci / integration-test / k8s versions
Matrix: ci / integration-test / optional
Matrix: ci / integration-test / optional k8s versions
Matrix: ci / integration-test / self-hosted-notary
Fit to window
Zoom out
Zoom in

Annotations

12 errors and 6 warnings
ci / sast / checkov: deployment/deployment.yaml#L284
CKV_K8S_43: "Image should use digest"
ci / sast / checkov: deployment/deployment.yaml#L284
CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"
ci / sast / checkov: deployment/deployment.yaml#L284
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
ci / sast / checkov: deployment/deployment.yaml#L284
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
ci / sast / checkov: deployment/deployment.yaml#L415
CKV_K8S_43: "Image should use digest"
ci / sast / checkov: deployment/deployment.yaml#L415
CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"
ci / sast / checkov: deployment/deployment.yaml#L415
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
ci / sast / checkov: deployment/deployment.yaml#L284
CKV2_K8S_6: "Minimize the admission of pods which lack an associated NetworkPolicy"
ci / sast / checkov: deployment/deployment.yaml#L415
CKV2_K8S_6: "Minimize the admission of pods which lack an associated NetworkPolicy"
ci / sast / checkov: deployment/deployment.yaml#L217
CKV2_K8S_5: "No ServiceAccount/Node should be able to read all secrets"
ci / sast / semgrep
Process completed with exit code 1.
ci / sca / grype
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
ci / build / context
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / sast / golangci-lint
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe, golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / unit-test / unit tests
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe, codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / build / build
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/setup-buildx-action@f03ac48505955848960e80bbb68046aa35c7b9e7, docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a, docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671, anchore/sbom-action@5ecf649a417b8ae17dc8383dc32d46c03f2312df, actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / sca / grype
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a, anchore/scan-action@dafbc97d7259af88b61bd260f2fde565d0668a72. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / sca / trivy image
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.

Artifacts

Produced during runtime
Name Size
cosign.pub Expired
178 Bytes
sbom.cdx Expired
279 KB
sse-secure-systems-connaisseur-test_sha-7028e0c.cyclonedx.json Expired
279 KB