Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add helm chart to rotate registry creds #29

Merged
merged 4 commits into from
Oct 21, 2024
Merged

Add helm chart to rotate registry creds #29

merged 4 commits into from
Oct 21, 2024

Conversation

arielbeckjit
Copy link
Contributor

A helm chart that refreshes our registry creds

jit-ci[bot]
jit-ci bot reviewed Oct 21, 2024
View reviewed changes
Copy link

@jit-ci jit-ci bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

❌ Jit has detected 1 important finding in this PR that you should review.
The finding is detailed below as a comment.
It’s highly recommended that you fix this security issue before merge.

src/kubernetes/jit_ecr/templates/script-configmap.yaml
@@ -0,0 +1,86 @@
apiVersion: v1
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Security control: Iac Misconfig Detection Kubernetes

Type: Applications Credentials In Configuration Files

Description: More details in the link below

Severity: HIGH

Learn more about this issue

Jit Bot commands and options (e.g., ignore issue)

You can trigger Jit actions by commenting on this PR review:

  • #jit_ignore_fp Ignore and mark this specific single instance of finding as “False Positive”
  • #jit_ignore_accept Ignore and mark this specific single instance of finding as “Accept Risk”
  • #jit_ignore_type_in_file Ignore any finding of type "Applications credentials in configuration files" in src/kubernetes/jit_ecr/templates/script-configmap.yaml; future occurrences will also be ignored.
  • #jit_undo_ignore Undo ignore command

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#jit_ignore_fp

jit-ci[bot]
jit-ci bot reviewed Oct 21, 2024
View reviewed changes
Copy link

@jit-ci jit-ci bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

❌ Jit has detected 1 important finding in this PR that you should review.
The finding is detailed as a comment.
It’s highly recommended that you fix this security issue before merge.

Until now, you ignored/fixed 1 finding.

src/kubernetes/jit_ecr/templates/script-configmap.yaml
@@ -0,0 +1,86 @@
apiVersion: v1
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Security control: Iac Misconfig Detection Kubernetes

Type: Applications Credentials In Configuration Files

Description: More details in the link below

Severity: HIGH

Learn more about this issue

Jit Bot commands and options (e.g., ignore issue)

You can trigger Jit actions by commenting on this PR review:

  • #jit_ignore_fp Ignore and mark this specific single instance of finding as “False Positive”
  • #jit_ignore_accept Ignore and mark this specific single instance of finding as “Accept Risk”
  • #jit_ignore_type_in_file Ignore any finding of type "Applications credentials in configuration files" in src/kubernetes/jit_ecr/templates/script-configmap.yaml; future occurrences will also be ignored.
  • #jit_undo_ignore Undo ignore command

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#jit_ignore_fp

@meshiyo meshiyo merged commit 67bcc0d into main Oct 21, 2024
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jit-ci jit-ci[bot] jit-ci[bot] left review comments

@meshiyo meshiyo meshiyo approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@arielbeckjit @meshiyo