Security Scans #332
thschuesecurity-scans.yml
on: schedule
Prepare Security Scans
7s
Matrix: Govulncheck
Matrix: Security Scans
Matrix: Trivy
Create GitHub Issue
4s
Annotations
32 errors and 3 warnings
|
Prepare Security Scans
no downloadable artifacts found (expired)
|
|
Govulncheck (keptn-cert-manager)
certificates.defaultCertificateHandler.Decode calls pem.Decode
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.LabelSelectorRetriever.GetCRDs calls client.client.List, which eventually calls url.URL.Parse
|
|
Govulncheck (keptn-cert-manager)
keptn.main calls config.GetConfigOrDie, which eventually calls url.ParseRequestURI
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.LabelSelectorRetriever.GetCRDs calls client.client.List, which eventually calls url.Parse
|
|
Govulncheck (keptn-cert-manager)
certificates.defaultCertificateHandler.Parse calls x509.ParseCertificate, which eventually calls asn1.Unmarshal
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.LabelSelectorRetriever.GetCRDs calls client.client.List, which eventually calls http.Client.Do
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.Certs.generateServerCerts calls rand.Int, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.Certs.generateServerCerts calls rand.Int, which eventually calls x509.Certificate.VerifyHostname
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.Certs.generateServerCerts calls rand.Int, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (keptn-cert-manager)
keptnwebhookcontroller.Certs.generateServerCerts calls rand.Int, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (lifecycle-operator)
keptnworkload.KeptnWorkloadReconciler.Reconcile calls client.subResourceClient.Update, which eventually calls url.URL.Parse
|
|
Govulncheck (lifecycle-operator)
config.kubeConfigProvider.GetConfig calls config.GetConfig, which eventually calls url.ParseRequestURI
|
|
Govulncheck (lifecycle-operator)
eventsender.cloudEvent.Emit calls event.Event.SetSource, which eventually calls url.Parse
|
|
Govulncheck (lifecycle-operator)
telemetry.GetOtelInstance calls sync.Once.Do, which eventually calls asn1.Unmarshal
|
|
Govulncheck (lifecycle-operator)
common.InitSuite calls envtest.Environment.Start, which eventually calls http.Client.Get
|
|
Govulncheck (lifecycle-operator)
keptnworkload.KeptnWorkloadReconciler.Reconcile calls client.subResourceClient.Update, which eventually calls http.Client.Do
|
|
Govulncheck (lifecycle-operator)
common.WriteReport calls fmt.Fprintf, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (lifecycle-operator)
common.WriteReport calls fmt.Fprintf, which eventually calls x509.Certificate.VerifyHostname
|
|
Govulncheck (lifecycle-operator)
common.WriteReport calls fmt.Fprintf, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (lifecycle-operator)
common.WriteReport calls fmt.Fprintf, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (metrics-operator)
elastic.GetElasticClient calls elasticsearch.NewClient, which eventually calls pem.Decode
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls http.Client.Do, which eventually calls url.URL.Parse
|
|
Govulncheck (metrics-operator)
dynatrace.DQLSecret.validate calls url.ParseRequestURI
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls http.NewRequestWithContext, which calls url.Parse
|
|
Govulncheck (metrics-operator)
provider.NewProvider calls sync.Once.Do, which eventually calls asn1.Unmarshal
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls http.Client.Do
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls io.ReadAll, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls io.ReadAll, which eventually calls x509.Certificate.VerifyHostname
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls io.ReadAll, which eventually calls x509.Certificate.Verify
|
|
Govulncheck (metrics-operator)
client.apiClient.Do calls io.ReadAll, which eventually calls x509.Certificate.Verify
|
|
Create GitHub Issue
An error occurred while creating the issue. This might be caused by a malformed issue title, or a typo in the labels or assignees. Check security-scan-failure.md!
Resource not accessible by integration
|
|
Govulncheck (keptn-cert-manager)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Govulncheck (lifecycle-operator)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
Govulncheck (metrics-operator)
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|