Skip to content
Push Charts to helm-charts-registry manually with specified version

Push Charts to helm-charts-registry manually with specified version #16

Sign in to view logs

Push Charts to helm-charts-registry manually with specified version

Push Charts to helm-charts-registry manually with specified version #16

Manually triggered August 8, 2024 08:58
@MWesterholzMWesterholz
9067188
OPS-6636-Allow-adding-dependencies-chart-release
Status Success
Total duration 1m 1s
Artifacts

chart-release-manual.yml

on: workflow_dispatch
scan  /  Kics Helm Chart Scan
25s
scan / Kics Helm Chart Scan
release  /  release
20s
release / release
Fit to window
Zoom out
Zoom in

Annotations

11 warnings
[MEDIUM] Container Running With Low UID: charts/schulportal-client/templates/deployment.yaml#L28
Check if containers are running with low UID, which might cause conflicts with the host's user table.
[MEDIUM] Readiness Probe Is Not Configured: charts/schulportal-client/templates/deployment.yaml#L23
Check if Readiness Probe is not configured.
[LOW] Container Requests Not Equal To It's Limits: charts/schulportal-client/templates/deployment.yaml#L23
Containers must have the same resource requests set as limits. This is recommended to avoid resource DDoS of the node during spikes and means that 'requests.memory' and 'requests.cpu' must equal 'limits.memory' and 'limits.cpu', respectively
[LOW] Container Requests Not Equal To It's Limits: charts/schulportal-client/templates/deployment.yaml#L23
Containers must have the same resource requests set as limits. This is recommended to avoid resource DDoS of the node during spikes and means that 'requests.memory' and 'requests.cpu' must equal 'limits.memory' and 'limits.cpu', respectively
[LOW] Image Without Digest: charts/schulportal-client/templates/deployment.yaml#L25
Images should be specified together with their digests to ensure integrity
[LOW] Liveness Probe Is Not Defined: charts/schulportal-client/templates/deployment.yaml#L23
In case of an unresponsive container, a Liveness Probe can help your application become more available since it restarts the container. However, it can lead to cascading failures. Define one if you really need it
[LOW] Missing AppArmor Profile: charts/schulportal-client/templates/deployment.yaml#L16
Containers should be configured with an AppArmor profile to enforce fine-grained access control over low-level system resources
[LOW] Pod or Container Without LimitRange: charts/schulportal-client/templates/deployment.yaml#L5
Each namespace should have a LimitRange policy associated to ensure that resource allocations of Pods, Containers and PersistentVolumeClaims do not exceed the defined boundaries
[LOW] Pod or Container Without ResourceQuota: charts/schulportal-client/templates/deployment.yaml#L5
Each namespace should have a ResourceQuota policy associated to limit the total amount of resources Pods, Containers and PersistentVolumeClaims can consume
[LOW] Root Container Not Mounted Read-only: charts/schulportal-client/templates/deployment.yaml#L28
Check if the root container filesystem is not being mounted read-only.
release / release
The following actions uses Node.js version which is deprecated and will be forced to run on node20: azure/setup-helm@5119fcb9089d432beecbf79bb2c7915207344b78. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/