| 0 |
CKV_GHA_1 |
jobs |
jobs |
Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn’t true on environment variables |
github_actions |
| 1 |
CKV_GHA_1 |
jobs |
jobs.*.steps[] |
Ensure ACTIONS_ALLOW_UNSECURE_COMMANDS isn’t true on environment variables |
github_actions |
| 2 |
CKV_GHA_2 |
jobs |
jobs |
Ensure run commands are not vulnerable to shell injection |
github_actions |
| 3 |
CKV_GHA_2 |
jobs |
jobs.*.steps[] |
Ensure run commands are not vulnerable to shell injection |
github_actions |
| 4 |
CKV_GHA_3 |
jobs |
jobs |
Suspicious use of curl with secrets |
github_actions |
| 5 |
CKV_GHA_3 |
jobs |
jobs.*.steps[] |
Suspicious use of curl with secrets |
github_actions |
| 6 |
CKV_GHA_4 |
jobs |
jobs |
Suspicious use of netcat with IP address |
github_actions |
| 7 |
CKV_GHA_4 |
jobs |
jobs.*.steps[] |
Suspicious use of netcat with IP address |
github_actions |