avm.res.container-service.managed-cluster #195
eriquaavm.res.container-service.managed-cluster.yml
on: workflow_dispatch
Initialize pipeline
7s
Matrix: Run / job_psrule_test_waf_reliability
Matrix: Run / job_psrule_test_waf_security_cb
Matrix: Run / job_psrule_test
Matrix: Run / job_psrule_test_waf_security
Matrix: Run / job_module_deploy_validation
Run
/
Publishing
0s
Annotations
29 errors and 8 warnings
|
Run / PSRule [waf-aligned]
AZR-000022: ***cswaf001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule [waf-aligned]
AZR-000435: ***cswaf001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule [waf-aligned]
AZR-000033: ***cswaf001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule [waf-aligned]
One or more assertions failed. One or more rules reported failure.
|
|
Run / PSRule [waf-aligned]
Process completed with exit code 1.
|
|
Run / PSRule [defaults]
AZR-000017: ***csmin001 failed Azure.AKS.PoolScaleSet. Deploy AKS clusters with nodes pools based on VM scale sets.
|
|
Run / PSRule [defaults]
AZR-000018: ***csmin001 failed Azure.AKS.NodeMinPods. Azure Kubernetes Cluster (AKS) nodes should use a minimum number of pods.
|
|
Run / PSRule [defaults]
AZR-000022: ***csmin001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule [defaults]
AZR-000023: ***csmin001 failed Azure.AKS.PlatformLogs. AKS clusters should collect platform diagnostic logs to monitor the state of workloads.
|
|
Run / PSRule [defaults]
AZR-000435: ***csmin001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule [defaults]
AZR-000027: ***csmin001 failed Azure.AKS.NetworkPolicy. AKS clusters without inter-pod network restrictions may be permit unauthorized lateral movement.
|
|
Run / PSRule [defaults]
AZR-000030: ***csmin001 failed Azure.AKS.AuthorizedIPs. Restrict access to API server endpoints to authorized IP addresses.
|
|
Run / PSRule [defaults]
AZR-000033: ***csmin001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule [defaults]
AZR-000041: ***csmin001 failed Azure.AKS.ContainerInsights. Enable Container insights to monitor AKS cluster workloads.
|
|
Run / PSRule [defaults]
AZR-000370: ***csmin001 failed Azure.AKS.DefenderProfile. Enable the Defender profile with Azure Kubernetes Service (AKS) cluster.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000022: ***csmin001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000435: ***csmin001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule - WAF Security [defaults]
AZR-000027: ***csmin001 failed Azure.AKS.NetworkPolicy. AKS clusters without inter-pod network restrictions may be permit unauthorized lateral movement.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000030: ***csmin001 failed Azure.AKS.AuthorizedIPs. Restrict access to API server endpoints to authorized IP addresses.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000033: ***csmin001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule - WAF Security [defaults]
AZR-000370: ***csmin001 failed Azure.AKS.DefenderProfile. Enable the Defender profile with Azure Kubernetes Service (AKS) cluster.
|
|
Run / PSRule - WAF Security [defaults]
One or more assertions failed. One or more rules reported failure.
|
|
Run / PSRule - WAF Security [defaults]
Process completed with exit code 1.
|
|
Run / PSRule - WAF Security [waf-aligned]
AZR-000022: ***cswaf001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
|
|
Run / PSRule - WAF Security [waf-aligned]
AZR-000435: ***cswaf001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
|
|
Run / PSRule - WAF Security [waf-aligned]
AZR-000033: ***cswaf001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
|
|
Run / PSRule - WAF Security [waf-aligned]
One or more assertions failed. One or more rules reported failure.
|
|
Run / PSRule - WAF Security [waf-aligned]
Process completed with exit code 1.
|
|
Run / Deploy [automatic]
Error: The process '/usr/bin/pwsh' failed with exit code 1
|
|
Run / Deploy [istio]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [defaults]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [kubenet]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [azure]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [non-aad-cluster]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [priv]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [automatic]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|
|
Run / Deploy [waf-aligned]
At least one of the parameters 'client-id', 'subscription-id' or 'tenant-id' is set. 'creds' will be ignored.
|