updated submodule bash-tools #29
Annotations
1 error and 10 warnings
Kics / Kics Scan
KICS scan failed with exit code 50
|
[HIGH] Cloud Storage Bucket Logging Not Enabled:
bash-tools/templates/terraform-templates/bucket.tf#L67
Cloud storage bucket should have logging enabled
|
[HIGH] Cloud Storage Bucket Versioning Disabled:
bash-tools/templates/terraform-templates/bucket.tf#L67
Cloud Storage Bucket should have versioning enabled
|
[HIGH] Container Is Privileged:
bash-tools/vagrant/kubernetes/calico.yaml#L3596
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
|
[HIGH] Container Is Privileged:
bash-tools/vagrant/kubernetes/calico.yaml#L3512
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
|
[HIGH] Container Is Privileged:
bash-tools/vagrant/kubernetes/calico.yaml#L3476
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
|
[HIGH] Container Is Privileged:
bash-tools/vagrant/kubernetes/calico.yaml#L3521
Privileged containers lack essential security restrictions and should be avoided by removing the 'privileged' flag or by changing its value to false
|
[HIGH] DB Security Group Open To Large Scope:
bash-tools/templates/ec2.yaml#L29
The IP address in a DB Security Group must not have more than 256 hosts.
|
[HIGH] Missing User Instruction:
bash-tools/templates/Dockerfile#L241
A user should be specified in the dockerfile, otherwise the image will run as root
|
[HIGH] Passwords And Secrets - Generic Password:
bash-tools/docker-compose/keycloak.yml#L38
Query to find passwords and secrets in infrastructure code.
|
[HIGH] Passwords And Secrets - Generic Password:
bash-tools/templates/helmfile.yaml#L47
Query to find passwords and secrets in infrastructure code.
|