Terraform CICD

Add network policy to private Kubernetes cluster #143

Sign in to view logs

Triggered via push March 25, 2025 18:57

florenciacomuzzi

main

Status Failure

Total duration 46s

Artifacts –

terraform.yml

on: push

OpenTelemetry Export Trace

Annotations

14 errors and 2 warnings

CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/

checkov: modules/private-k8s-cluster/main.tf#L135

CKV_GCP_38: "Ensure VM disks for critical VMs are encrypted with Customer Supplied Encryption Keys (CSEK)"

checkov: modules/private-k8s-cluster/main.tf#L93

CKV_GCP_9: "Ensure 'Automatic node repair' is enabled for Kubernetes Clusters"

checkov: modules/private-k8s-cluster/main.tf#L93

CKV_GCP_68: "Ensure Secure Boot for Shielded GKE Nodes is Enabled"

checkov: modules/private-k8s-cluster/main.tf#L93

CKV_GCP_69: "Ensure the GKE Metadata Server is Enabled"

checkov: modules/private-k8s-cluster/main.tf#L93

CKV_GCP_10: "Ensure 'Automatic node upgrade' is enabled for Kubernetes Clusters"

checkov: modules/private-k8s-cluster/main.tf#L22

CKV_GCP_65: "Manage Kubernetes RBAC users with Google Groups for GKE"

checkov: modules/private-k8s-cluster/main.tf#L22

CKV_GCP_21: "Ensure Kubernetes Clusters are configured with Labels"

checkov: modules/private-k8s-cluster/main.tf#L22

CKV_GCP_69: "Ensure the GKE Metadata Server is Enabled"

checkov: modules/private-k8s-cluster/main.tf#L15

CKV_GCP_41: "Ensure that IAM users are not assigned the Service Account User or Service Account Token Creator roles at project level"

checkov: modules/private-k8s-cluster/main.tf#L15

CKV_GCP_49: "Ensure roles do not impersonate or manage Service Accounts used at project level"

Process completed with exit code 1.

Process completed with exit code 1.

Terraform exited with code 1.

The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/

The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/