chore(deps): bump aquasecurity/trivy-action from 0.20.0 to 0.21.0 #4027
Annotations
7 warnings
KICS scan:
samples/edc-dast/docker-compose.yaml#L30
Incoming container traffic should be bound to a specific host interface
|
KICS scan:
samples/edc-dast/docker-compose.yaml#L24
Check containers periodically to see if they are running properly.
|
KICS scan:
samples/edc-dast/docker-compose.yaml#L24
The hosts process namespace should not be shared by containers
|
KICS scan:
samples/edc-dast/docker-compose.yaml#L24
Memory limits should be defined for each container. This prevents potential resource exhaustion by ensuring that containers consume not more than the designated amount of memory
|
KICS scan:
samples/edc-dast/docker-compose.yaml#L24
Attribute 'security_opt' should be defined.
|
KICS scan:
samples/edc-dast/docker-compose.yaml#L24
Some capabilities are not needed in certain (or any) containers. Make sure that you only add capabilities that your container needs. Drop unnecessary capabilities as well.
|
KICS scan:
samples/edc-dast/docker-compose.yaml#L24
CPU limits should be set because if the system has CPU time free, a container is guaranteed to be allocated as much CPU as it requests
|
Loading