updated config · HariSekhon/DevOps-Bash-tools@6e5ca9b

Triggered via push April 7, 2025 20:02

HariSekhon

pushed 6e5ca9b

master

Status Failure

Total duration 2m 29s

Artifacts –

kics.yaml

on: push

Kics / Kics Scan

2m 23s

Annotations

2 errors and 10 warnings

Kics / Kics Scan

CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/

Kics / Kics Scan

KICS scan failed with exit code 50

[MEDIUM] Container Capabilities Unrestricted: docker-compose/circleci.yml#L32

Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.

[MEDIUM] Container Capabilities Unrestricted: docker-compose/octopus-deploy.yml#L28

Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.

[MEDIUM] Container Capabilities Unrestricted: docker-compose/gocd.yml#L36

Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.

[HIGH] Privileged Containers Enabled: docker-compose/concourse.yml#L35

Privileged containers should be used with extreme caution, they have all of the capabilities that the linux kernel offers for docker.

[HIGH] Passwords And Secrets - Generic Password: docker-compose/wordpress.yml#L27