eidottermihi
commented
7 months ago on a first look, I think every issue of the report can be configured by the user of the chart, e.g. container/pod securityContext and container resources are freely configurable via values.yaml.
IMHO thats enough and follows helm standards, as those defaults are configured when creating a new chart via helm create.
Also changing those defaults in the Chart would be a breaking change for users.
Ich habe einmal Checkmarx Kics über das Helm-Chart AppSwitch-Server laufen gelassen. https://docs.gitlab.com/ee/user/application_security/iac_scanning/
Es gibt ein paar Verbesserungsvorschläge für das Helm Chart.
gl-sast-report.json
@eidottermihi