CKV_K8S_9: "Readiness Probe Should be Configured"

CKV_K8S_14: "Image Tag should be fixed - not latest or blank"

CKV_K8S_28: "Minimize the admission of containers with the NET_RAW capability"

CKV_K8S_43: "Image should use digest"

CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"

CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"

CKV_K8S_23: "Minimize the admission of root containers"

CKV_K8S_29: "Apply security context to your pods and containers"

CKV_K8S_21: "The default namespace should not be used"

CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"

CKV_AWS_20: "S3 Bucket has an ACL defined which allows public READ access."

CKV_AWS_19: "Ensure all data stored in the S3 bucket is securely encrypted at rest"

CKV_AWS_144: "Ensure that S3 bucket has cross-region replication enabled"

CKV2_AWS_6: "Ensure that S3 bucket has a Public Access block"

CKV_AWS_145: "Ensure that S3 buckets are encrypted with KMS by default"

CKV_AWS_18: "Ensure the S3 bucket has access logging enabled"

CKV_AWS_21: "Ensure all data stored in the S3 bucket have versioning enabled"

CKV_AWS_20: "S3 Bucket has an ACL defined which allows public READ access."

CKV_AWS_19: "Ensure all data stored in the S3 bucket is securely encrypted at rest"

CKV_AWS_144: "Ensure that S3 bucket has cross-region replication enabled"

CKV_K8S_14: "Image Tag should be fixed - not latest or blank"

CKV_K8S_10: "CPU requests should be set"

CKV_K8S_43: "Image should use digest"

CKV_K8S_16: "Container should not be privileged"

CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"

CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"

CKV_K8S_29: "Apply security context to your pods and containers"

CKV_K8S_23: "Minimize the admission of root containers"

CKV_K8S_21: "The default namespace should not be used"

CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"

CKV_K8S_40: "Containers should run as a high UID to avoid host conflict"

CKV_K8S_43: "Image should use digest"

CKV_AWS_145: "Ensure that S3 buckets are encrypted with KMS by default"

CKV_AWS_20: "S3 Bucket has an ACL defined which allows public READ access."

CKV_AWS_18: "Ensure the S3 bucket has access logging enabled"

CKV_AWS_144: "Ensure that S3 bucket has cross-region replication enabled"

CKV_AWS_21: "Ensure all data stored in the S3 bucket have versioning enabled"

CKV2_AWS_6: "Ensure that S3 bucket has a Public Access block"

CKV2_AWS_61: "Ensure that an S3 bucket has a lifecycle configuration"

CKV2_AWS_62: "Ensure S3 buckets should have event notifications enabled"

Process completed with exit code 1.

step missing both "run" and "uses"

Process completed with exit code 1.

string should not be empty

specifying action "" in invalid format because ref is missing. available formats are "{owner}/{repo}@{ref}" or "{owner}/{repo}/{path}@{ref}"

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: azure/setup-helm@v4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/dependency-review-action@v4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: azure/setup-helm@v4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: azure/setup-helm@v4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/

Unexpected input(s) 'compact', valid inputs are ['entryPoint', 'args', 'directory', 'check', 'skip_check', 'quiet', 'api-key', 'soft_fail', 'framework', 'external_checks_dirs', 'external_checks_repos', 'output_format', 'download_external_modules', 'log_level', 'config_file', 'baseline', 'soft_fail_on', 'hard_fail_on', 'container_user']

The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/

Unexpected input(s) 'compact', valid inputs are ['entryPoint', 'args', 'directory', 'check', 'skip_check', 'quiet', 'api-key', 'soft_fail', 'framework', 'external_checks_dirs', 'external_checks_repos', 'output_format', 'download_external_modules', 'log_level', 'config_file', 'baseline', 'soft_fail_on', 'hard_fail_on', 'container_user']

The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/

Unexpected input(s) 'compact', valid inputs are ['entryPoint', 'args', 'directory', 'check', 'skip_check', 'quiet', 'api-key', 'soft_fail', 'framework', 'external_checks_dirs', 'external_checks_repos', 'output_format', 'download_external_modules', 'log_level', 'config_file', 'baseline', 'soft_fail_on', 'hard_fail_on', 'container_user']

Restore cache failed: Dependencies file is not found in /home/runner/work/github-actions/github-actions. Supported file pattern: go.mod

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f, docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Starting April 2026, the CodeQL Action will skip computing file coverage information on pull requests to improve analysis performance. File coverage information will still be computed on non-PR analyses. To opt out of this change, set the `CODEQL_ACTION_FILE_COVERAGE_ON_PRS` environment variable to `true`. Alternatively, create a custom repository property with the name `github-codeql-file-coverage-on-prs` and the type "True/false", then set this property to `true` in the repository's settings.