Security Scans #38
RealAnnasecurity-scans.yml
on: schedule
Prepare Security Scans
54s
Matrix: Govulncheck
Matrix: Security Scans
Matrix: Trivy
Create GitHub Issue
4s
Annotations
40 errors and 18 warnings
|
Govulncheck (keptn-cert-manager)
keptn.main calls manager.New, which eventually calls http2.ConfigureTransports
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.ConnectionError.Error
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.ErrCode.String
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.FrameHeader.String
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.FrameType.String
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.GoAwayError.Error
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.Setting.String
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.SettingID.String
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls log.Fatalf, which eventually calls http2.StreamError.Error
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.LabelSelectorRetriever.GetCRDs calls client.client.List, which eventually calls http2.Transport.NewClientConn
|
|
Govulncheck (scheduler)
scheduler.main calls cli.Run, which eventually calls http2.ConfigureServer
|
|
Govulncheck (scheduler)
klcpermit.newClient calls dynamic.NewForConfig, which eventually calls http2.ConfigureTransports
|
|
Govulncheck (scheduler)
klcpermit.WorkloadManager.Permit calls http2.ConnectionError.Error
|
|
Govulncheck (scheduler)
klcpermit.WorkloadManager.Permit calls field.Error.Error, which eventually calls http2.ErrCode.String
|
|
Govulncheck (scheduler)
klcpermit.WorkloadManager.Permit calls field.Error.Error, which eventually calls http2.FrameHeader.String
|
|
Govulncheck (scheduler)
klcpermit.WorkloadManager.Permit calls field.Error.Error, which eventually calls http2.FrameType.String
|
|
Govulncheck (scheduler)
klcpermit.WorkloadManager.Permit calls field.Error.Error, which eventually calls http2.FrameWriteRequest.String
|
|
Govulncheck (scheduler)
scheduler.main calls trace.TracerProvider.Shutdown, which eventually calls http2.Framer.ReadFrame
|
|
Govulncheck (scheduler)
scheduler.main calls trace.TracerProvider.Shutdown, which eventually calls http2.Framer.WriteContinuation
|
|
Govulncheck (scheduler)
scheduler.main calls trace.TracerProvider.Shutdown, which eventually calls http2.Framer.WriteData
|
|
Govulncheck (lifecycle-operator)
common.InitSuite calls manager.New, which eventually calls http2.ConfigureTransports
|
|
Govulncheck (lifecycle-operator)
keptnworkloadversion.KeptnWorkloadVersionReconciler.checkPreEvaluationStatusOfApp calls http2.ConnectionError.Error
|
|
Govulncheck (lifecycle-operator)
common.ResetSpanRecords calls fmt.Sprint, which eventually calls http2.ErrCode.String
|
|
Govulncheck (lifecycle-operator)
common.ResetSpanRecords calls fmt.Sprint, which eventually calls http2.FrameHeader.String
|
|
Govulncheck (lifecycle-operator)
common.ResetSpanRecords calls fmt.Sprint, which eventually calls http2.FrameType.String
|
|
Govulncheck (lifecycle-operator)
telemetry.newOTelExporter calls grpc.DialContext, which eventually calls http2.Framer.ReadFrame
|
|
Govulncheck (lifecycle-operator)
telemetry.newOTelExporter calls grpc.DialContext, which eventually calls http2.Framer.WriteContinuation
|
|
Govulncheck (lifecycle-operator)
telemetry.newOTelExporter calls grpc.DialContext, which eventually calls http2.Framer.WriteData
|
|
Govulncheck (lifecycle-operator)
telemetry.newOTelExporter calls grpc.DialContext, which eventually calls http2.Framer.WriteHeaders
|
|
Govulncheck (lifecycle-operator)
telemetry.newOTelExporter calls grpc.DialContext, which eventually calls http2.Framer.WritePing
|
|
Govulncheck (metrics-operator)
adapter.MetricsAdapter.RunAdapter calls cmd.AdapterBase.Run, which eventually calls http2.ConfigureServer
|
|
Govulncheck (metrics-operator)
metrics.main calls manager.New, which eventually calls http2.ConfigureTransports
|
|
Govulncheck (metrics-operator)
metrics.KeptnMetricReconciler.Reconcile calls http2.ConnectionError.Error
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls fmt.Sprintf, which eventually calls http2.ErrCode.String
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls fmt.Sprintf, which eventually calls http2.FrameHeader.String
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls fmt.Sprintf, which eventually calls http2.FrameType.String
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls fmt.Sprintf, which eventually calls http2.FrameWriteRequest.String
|
|
Govulncheck (metrics-operator)
metrics.KeptnMetricReconciler.Reconcile calls client.client.Get, which eventually calls http2.Framer.ReadFrame
|
|
Govulncheck (metrics-operator)
metrics.KeptnMetricReconciler.Reconcile calls client.client.Get, which eventually calls http2.Framer.WriteContinuation
|
|
Govulncheck (metrics-operator)
metrics.KeptnMetricReconciler.Reconcile calls client.client.Get, which eventually calls http2.Framer.WriteData
|
|
Govulncheck (keptn-cert-manager)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Govulncheck (scheduler)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Prepare Security Scans
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/upload-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Govulncheck (lifecycle-operator)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Trivy (lifecycle-operator)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Trivy (python-runtime)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Govulncheck (metrics-operator)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Trivy (scheduler)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Trivy (certificate-operator)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Security Scans (kubescape, ARMOBest)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Security Scans (kubescape, nsa)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Trivy (deno-runtime)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Security Scans (kics)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3, actions/upload-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Security Scans (kubescape, mitre)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Trivy (metrics-operator)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Security Scans (kubeconform, v0.5.0)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Create GitHub Issue
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: JasonEtco/create-an-issue@v2.9.1. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
|
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "images", "kics-results", "tag".
Please update your workflow to use v4 of the artifact actions.
Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
images
Expired
|
144 MB |
|
|
kics-results
Expired
|
586 Bytes |
|
|
tag
Expired
|
1 Byte |
|