chore(deps): bump com.puppycrawl.tools:checkstyle from 10.8.0 to 10.12.2 #531
Annotations
10 warnings
[MEDIUM] Using Unrecommended Namespace:
charts/irs-helm/templates/deployment.yaml#L1
Namespaces like 'default', 'kube-system' or 'kube-public' should not be used
|
[MEDIUM] Using Unrecommended Namespace:
charts/irs-helm/templates/service.yaml#L25
Namespaces like 'default', 'kube-system' or 'kube-public' should not be used
|
[MEDIUM] Using Unrecommended Namespace:
charts/irs-helm/templates/configmap-spring-app-config.yaml#L26
Namespaces like 'default', 'kube-system' or 'kube-public' should not be used
|
[LOW] Container Requests Not Equal To It's Limits:
charts/irs-helm/templates/deployment.yaml#L144
Containers must have the same resource requests set as limits. This is recommended to avoid resource DDoS of the node during spikes and means that 'requests.memory' and 'requests.cpu' must equal 'limits.memory' and 'limits.cpu', respectively
|
[LOW] Image Without Digest:
charts/irs-helm/templates/deployment.yaml#L1
Images should be specified together with their digests to ensure integrity
|
[LOW] Missing AppArmor Profile:
charts/irs-helm/templates/deployment.yaml#L1
Containers should be configured with an AppArmor profile to enforce fine-grained access control over low-level system resources
|
[LOW] Pod or Container Without LimitRange:
charts/irs-helm/templates/deployment.yaml#L1
Each namespace should have a LimitRange policy associated to ensure that resource allocations of Pods, Containers and PersistentVolumeClaims do not exceed the defined boundaries
|
[LOW] Pod or Container Without ResourceQuota:
charts/irs-helm/templates/deployment.yaml#L1
Each namespace should have a ResourceQuota policy associated to limit the total amount of resources Pods, Containers and PersistentVolumeClaims can consume
|
[LOW] Secrets As Environment Variables:
charts/irs-helm/templates/deployment.yaml#L1
Container should not use secrets as environment variables
|
[LOW] Secrets As Environment Variables:
charts/irs-helm/templates/deployment.yaml#L1
Container should not use secrets as environment variables
|
Artifacts
Produced during runtime
Name | Size | |
---|---|---|
kicsResults.json
Expired
|
15.7 KB |
|