Cloned2Preserve
/
TrueChartsClone
mirror of https://github.com/truecharts/charts.git
1
0
Fork 0
Code

feat(ci): add snyk ignore

This commit is contained in:
kjeld Schouten-Lebbing 2021-12-03 16:42:38 +01:00
parent 619a7b7f3e
commit 462c2c167a
No known key found for this signature in database
GPG Key ID: 4CDAD4A532BC1EDB
1 changed files with 25 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

25
.snyk Normal file
View File

@ -0,0 +1,25 @@
# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.22.1
# ignores vulnerabilities until expiry date; change duration by modifying expiry date
ignore:
SNYK-CC-K8S-10:
- '* > * > input > spec > template > spec > initContainers[autopermissions] > securityContext > runAsNonRoot':
reason: Permissions script requires root
expires: 2666-01-02T15:25:09.138Z
created: 2021-12-03T15:25:09.144Z
SNYK-CC-K8S-41:
- '* > * > spec > template > spec > initContainers[autopermissions] > livenessProbe':
reason: Permissions script requires root
expires: 2666-01-02T15:25:09.138Z
created: 2021-12-03T15:25:09.144Z
SNYK-CC-K8S-11:
- '*':
reason: UID Clashes is not a priority, default user 568 is reserved on SCALE systems
expires: 2666-01-02T15:25:09.138Z
created: 2021-12-03T15:25:09.144Z
SNYK-CC-K8S-42:
- '*':
reason: We enforce digestpinning all container images and run auto-updater weekly
expires: 2666-01-02T15:25:09.138Z
created: 2021-12-03T15:25:09.144Z
patch: {}