KICS #117
Annotations
12 warnings
Analyze
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
Analyze
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
[MEDIUM] Array Without Maximum Number of Items (v3):
docs/api/openAPI.json#L682
Array schema should have the field 'maxItems' set
|
[MEDIUM] Array Without Maximum Number of Items (v3):
docs/api/openAPI.json#L676
Array schema should have the field 'maxItems' set
|
[MEDIUM] Container Running As Root:
charts/ssi-dim-wallet-stub/templates/deployment.yaml#L42
Containers should only run as non-root user. This limits the exploitability of security misconfigurations and restricts an attacker's possibilities in case of compromise
|
[MEDIUM] Container Running With Low UID:
charts/ssi-dim-wallet-stub/templates/deployment.yaml#L42
Check if containers are running with low UID, which might cause conflicts with the host's user table.
|
[MEDIUM] Global Server Object Uses HTTP:
docs/api/openAPI.json#L16
Global server object URL should use 'https' protocol instead of 'http'
|
[MEDIUM] Media Type Object Without Schema:
docs/api/openAPI.json#L203
The Media Type Object should have the attribute 'schema' defined
|
[MEDIUM] Media Type Object Without Schema:
docs/api/openAPI.json#L417
The Media Type Object should have the attribute 'schema' defined
|
[MEDIUM] Media Type Object Without Schema:
docs/api/openAPI.json#L269
The Media Type Object should have the attribute 'schema' defined
|
[MEDIUM] Media Type Object Without Schema:
docs/api/openAPI.json#L47
The Media Type Object should have the attribute 'schema' defined
|
[MEDIUM] Media Type Object Without Schema:
docs/api/openAPI.json#L591
The Media Type Object should have the attribute 'schema' defined
|