Skip to content
avm.res.container-service.managed-cluster

fix: Change the naming policy, to use subscription id unique string, … #8

Sign in to view logs

fix: Change the naming policy, to use subscription id unique string, …

fix: Change the naming policy, to use subscription id unique string, … #8

Triggered via push January 18, 2025 13:55
@arnor-ingthorssonarnor-ingthorsson
pushed 9d2f72a
main
Status Failure
Total duration 1h 58m 29s
Artifacts

avm.res.container-service.managed-cluster.yml

on: push
Initialize pipeline
17s
Initialize pipeline
Run  /  Static validation
1m 38s
Run / Static validation
Matrix: Run / job_psrule_test_waf_reliability
Matrix: Run / job_psrule_test_waf_security_cb
Matrix: Run / job_psrule_test
Matrix: Run / job_psrule_test_waf_security
Matrix: Run / job_module_deploy_validation
Run  /  Publishing
0s
Run / Publishing
Fit to window
Zoom out
Zoom in

Annotations

38 errors and 6 warnings
Run / PSRule - WAF Security [defaults]
AZR-000022: #_namePrefix_#csmin001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
Run / PSRule - WAF Security [defaults]
AZR-000435: #_namePrefix_#csmin001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
Run / PSRule - WAF Security [defaults]
AZR-000027: #_namePrefix_#csmin001 failed Azure.AKS.NetworkPolicy. AKS clusters without inter-pod network restrictions may be permit unauthorized lateral movement.
Run / PSRule - WAF Security [defaults]
AZR-000030: #_namePrefix_#csmin001 failed Azure.AKS.AuthorizedIPs. Restrict access to API server endpoints to authorized IP addresses.
Run / PSRule - WAF Security [defaults]
AZR-000033: #_namePrefix_#csmin001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
Run / PSRule - WAF Security [defaults]
AZR-000370: #_namePrefix_#csmin001 failed Azure.AKS.DefenderProfile. Enable the Defender profile with Azure Kubernetes Service (AKS) cluster.
Run / PSRule - WAF Security [defaults]
One or more assertions failed. One or more rules reported failure.
Run / PSRule - WAF Security [defaults]
Process completed with exit code 1.
Run / PSRule [defaults]
AZR-000017: #_namePrefix_#csmin001 failed Azure.AKS.PoolScaleSet. Deploy AKS clusters with nodes pools based on VM scale sets.
Run / PSRule [defaults]
AZR-000018: #_namePrefix_#csmin001 failed Azure.AKS.NodeMinPods. Azure Kubernetes Cluster (AKS) nodes should use a minimum number of pods.
Run / PSRule [defaults]
AZR-000022: #_namePrefix_#csmin001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
Run / PSRule [defaults]
AZR-000023: #_namePrefix_#csmin001 failed Azure.AKS.PlatformLogs. AKS clusters should collect platform diagnostic logs to monitor the state of workloads.
Run / PSRule [defaults]
AZR-000435: #_namePrefix_#csmin001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
Run / PSRule [defaults]
AZR-000027: #_namePrefix_#csmin001 failed Azure.AKS.NetworkPolicy. AKS clusters without inter-pod network restrictions may be permit unauthorized lateral movement.
Run / PSRule [defaults]
AZR-000030: #_namePrefix_#csmin001 failed Azure.AKS.AuthorizedIPs. Restrict access to API server endpoints to authorized IP addresses.
Run / PSRule [defaults]
AZR-000033: #_namePrefix_#csmin001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
Run / PSRule [defaults]
AZR-000039: #_namePrefix_#csmin001 failed Azure.AKS.Name. Azure Kubernetes Service (AKS) cluster names should meet naming requirements.
Run / PSRule [defaults]
AZR-000040: #_namePrefix_#csmin001 failed Azure.AKS.DNSPrefix. Azure Kubernetes Service (AKS) cluster DNS prefix should meet naming requirements.
Run / PSRule - WAF Security [waf-aligned]
AZR-000022: #_namePrefix_#cswaf001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
Run / PSRule - WAF Security [waf-aligned]
AZR-000435: #_namePrefix_#cswaf001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
Run / PSRule - WAF Security [waf-aligned]
AZR-000033: #_namePrefix_#cswaf001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
Run / PSRule - WAF Security [waf-aligned]
One or more assertions failed. One or more rules reported failure.
Run / PSRule - WAF Security [waf-aligned]
Process completed with exit code 1.
Run / PSRule [waf-aligned]
AZR-000022: #_namePrefix_#cswaf001 failed Azure.AKS.AuditLogs. AKS clusters should collect security-based audit logs to assess and monitor the compliance status of workloads.
Run / PSRule [waf-aligned]
AZR-000435: #_namePrefix_#cswaf001 failed Azure.AKS.NodeAutoUpgrade. Deploy AKS Clusters with Node Auto-Upgrade enabled
Run / PSRule [waf-aligned]
AZR-000033: #_namePrefix_#cswaf001 failed Azure.AKS.SecretStore. Deploy AKS clusters with Secrets Store CSI Driver and store Secrets in Key Vault.
Run / PSRule [waf-aligned]
AZR-000039: #_namePrefix_#cswaf001 failed Azure.AKS.Name. Azure Kubernetes Service (AKS) cluster names should meet naming requirements.
Run / PSRule [waf-aligned]
AZR-000040: #_namePrefix_#cswaf001 failed Azure.AKS.DNSPrefix. Azure Kubernetes Service (AKS) cluster DNS prefix should meet naming requirements.
Run / PSRule [waf-aligned]
One or more assertions failed. One or more rules reported failure.
Run / PSRule [waf-aligned]
Process completed with exit code 1.
Run / Deploy [defaults]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [automatic]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [azure]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [kubenet]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [non-aad-cluster]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [priv]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [istio]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Run / Deploy [waf-aligned]
Login failed with Error: Using auth-type: SERVICE_PRINCIPAL. Not all values are present. Ensure 'client-id' and 'tenant-id' are supplied.. Double check if the 'auth-type' is correct. Refer to https://github.com/Azure/login#readme for more information.
Initialize pipeline
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Run / PSRule - WAF Reliability [defaults]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Run / PSRule - WAF Security - AVM Custom Baseline [defaults]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Run / Static validation
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Run / PSRule - WAF Security - AVM Custom Baseline [waf-aligned]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Run / PSRule - WAF Reliability [waf-aligned]
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636