Merge pull request #27 from digitalist-se/pre_upgrade #78
Annotations
10 errors
checkov-action
CKV_K8S_153: "Prevent All NGINX Ingress annotation snippets. See CVE-2021-25742"
|
checkov-action
CKV_K8S_43: "Image should use digest"
|
checkov-action
CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"
|
checkov-action
CKV_K8S_29: "Apply security context to your pods and containers"
|
checkov-action
CKV_K8S_22: "Use read-only filesystem for containers where possible"
|
checkov-action
CKV_K8S_35: "Prefer using secrets as files over secrets as environment variables"
|
checkov-action
CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"
|
checkov-action
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
|
checkov-action
CKV_K8S_11: "CPU limits should be set"
|
checkov-action
CKV_K8S_28: "Minimize the admission of containers with the NET_RAW capability"
|