feat: Update KubeArmor to use OCI hooks instead of depending on container runtime socket #4730
Triggered via pull request
September 18, 2024 20:06
AbdelrahmanElawady
Status
Success
Total duration
2m 24s
Artifacts
–
ci-test-go.yml
on: pull_request
go-fmt
17s
go-lint
1m 4s
go-lint-tests
1m 9s
go-sec
2m 11s
go-vuln
1m 40s
go-test
1m 43s
license
27s
Annotations
10 errors and 34 warnings
|
go-vuln
common.hasMultipleMounts calls mountinfo.GetMountInfo
|
|
go-vuln
common.checkOrMountDefaultLocations calls mountinfo.IsMountFS
|
|
go-vuln
common.init calls mountinfo.init
|
|
go-vuln
util.init calls vm.init, which eventually calls addressing.init
|
|
go-vuln
util.K8sExecInPodWithContainer calls rest.Request.VersionedParams, which eventually calls api.Rule.DeepCopyInto
|
|
go-vuln
util.K8sDelete calls fmt.Sprintf, which eventually calls api.Rules.String
|
|
go-vuln
util.init calls vm.init, which eventually calls api.init
|
|
go-vuln
util.init calls vm.init, which eventually calls api.init
|
|
go-vuln
util.init calls vm.init, which eventually calls bgp.New
|
|
go-vuln
util.init calls vm.init, which eventually calls bgp.init
|
|
go-fmt
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-fmt
Restore cache failed: Dependencies file is not found in /home/runner/work/KubeArmor/KubeArmor. Supported file pattern: go.sum
|
|
license
Restore cache failed: Some specified paths were not resolved, unable to cache dependencies.
|
|
license
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, actions/setup-go@v4. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-lint
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-lint
Restore cache failed: Dependencies file is not found in /home/runner/work/KubeArmor/KubeArmor. Supported file pattern: go.sum
|
|
go-lint:
KubeArmor/types/types.go#L668
exported type HookOperation should have comment or be unexported
|
|
go-lint:
KubeArmor/types/types.go#L662
exported type HookRequest should have comment or be unexported
|
|
go-lint:
KubeArmor/enforcer/bpflsm/enforcer.go#L59
parameter 'node' seems to be unused, consider removing or renaming it as _
|
|
go-lint:
KubeArmor/types/types.go#L671
exported const HookContainerCreate should have comment (or a comment on this block) or be unexported
|
|
go-lint:
KubeArmor/enforcer/bpflsm/mapHelpers.go#L72
comment on exported method BPFEnforcer.DeleteContainerInnerMap should be of the form "DeleteContainerInnerMap ..."
|
|
go-lint:
KubeArmor/enforcer/bpflsm/mapHelpers.go#L45
comment on exported method BPFEnforcer.CreateContainerInnerMap should be of the form "CreateContainerInnerMap ..."
|
|
go-lint:
KubeArmor/enforcer/bpflsm/rulesHandling.go#L477
parameter 'oldPosture' seems to be unused, consider removing or renaming it as _
|
|
go-lint:
KubeArmor/enforcer/bpflsm/rulesHandling.go#L477
parameter 'newPosture' seems to be unused, consider removing or renaming it as _
|
|
go-lint:
KubeArmor/policy/policy.go#L26
parameter 'c' seems to be unused, consider removing or renaming it as _
|
|
go-lint:
KubeArmor/policy/policy.go#L17
type name will be used as policy.PolicyServer by other packages, and that stutters; consider calling this Server
|
|
go-lint-tests
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-lint-tests:
tests/k8s_env/csp/csp_test.go#L11
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/csp/csp_test.go#L10
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/throttling/throttling_test.go#L10
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/csp/csp_test.go#L12
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/throttling/throttling_test.go#L12
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/throttling/throttling_test.go#L11
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/visibility/visibility_test.go#L12
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/visibility/visibility_test.go#L11
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/blockposture/block_test.go#L11
should not use dot imports
|
|
go-lint-tests:
tests/k8s_env/visibility/visibility_test.go#L13
should not use dot imports
|
|
go-lint-tests
Restore cache failed: Dependencies file is not found in /home/runner/work/KubeArmor/KubeArmor. Supported file pattern: go.sum
|
|
go-vuln
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-vuln
Restore cache failed: Dependencies file is not found in /home/runner/work/KubeArmor/KubeArmor. Supported file pattern: go.sum
|
|
go-test
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-test
Restore cache failed: Dependencies file is not found in /home/runner/work/KubeArmor/KubeArmor. Supported file pattern: go.sum
|
|
go-sec
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
go-sec
Restore cache failed: Dependencies file is not found in /home/runner/work/KubeArmor/KubeArmor. Supported file pattern: go.sum
|