Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: RHIDP-1690: Fix SNYK findings #25

Merged
merged 1 commit into from
Jun 20, 2024
Merged

chore: RHIDP-1690: Fix SNYK findings #25

merged 1 commit into from
Jun 20, 2024

Conversation

coreydaley
Copy link
Member

@coreydaley coreydaley commented Jun 11, 2024
edited
Loading

Description of the change

Updates the Helm chart to address issues identified by using the SNYK scanning tool, mostly updating the securityContext settings on the containers/pods to reduce the attach surface, and also adding requests/limits for the cpu and memory.

Existing or Associated Issue(s)

Addresses https://issues.redhat.com/browse/RHIDP-1690

Additional Information

Checklist

  • Chart version bumped in Chart.yaml according to semver.
  • Variables are documented in the values.yaml and added to the README.md. The pre-commit utility can be used to generate the necessary content. Use pre-commit run -a to apply changes.
  • JSON Schema template updated and re-generated the raw schema via pre-commit hook.
  • List tests pass for Chart using the Chart Testing tool and the ct lint command.

@openshift-ci openshift-ci bot requested review from davidfestal and kadel June 11, 2024 14:29
@coreydaley coreydaley force-pushed the RHIDP-1690-fix-snyk-findings branch 3 times, most recently from cb7b1b4 to 9f119d3 Compare June 12, 2024 00:02
@coreydaley coreydaley changed the title [WIP] RHIDP-1690: Fix SNYK findings RHIDP-1690: Fix SNYK findings Jun 12, 2024
@coreydaley coreydaley marked this pull request as draft June 12, 2024 02:31
@coreydaley coreydaley force-pushed the RHIDP-1690-fix-snyk-findings branch from 356c0c2 to fbaac54 Compare June 12, 2024 16:55
@sonarcloud SonarCloud
Copy link

sonarcloud bot commented Jun 12, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

@coreydaley coreydaley marked this pull request as ready for review June 12, 2024 16:56
@openshift-ci openshift-ci bot requested review from gazarenkov and tumido June 12, 2024 16:56
@coreydaley coreydaley changed the title RHIDP-1690: Fix SNYK findings chore: RHIDP-1690: Fix SNYK findings Jun 12, 2024
@coreydaley coreydaley force-pushed the RHIDP-1690-fix-snyk-findings branch from fbaac54 to a1f974a Compare June 18, 2024 14:50
@coreydaley coreydaley force-pushed the RHIDP-1690-fix-snyk-findings branch from a1f974a to de14ec2 Compare June 18, 2024 14:52
gazarenkov
gazarenkov approved these changes Jun 20, 2024
View reviewed changes
Copy link
Member

@gazarenkov gazarenkov left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@coreydaley coreydaley merged commit bec7efa into redhat-developer:main Jun 20, 2024
3 checks passed
coreydaley added a commit to coreydaley/redhat-developer-rhdh-chart that referenced this pull request Jun 25, 2024
@coreydaley
fix: Revert redhat-developer#25 and redhat-developer#28
2f81c01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gazarenkov gazarenkov gazarenkov approved these changes

@rm3l rm3l rm3l approved these changes

@davidfestal davidfestal Awaiting requested review from davidfestal

@kadel kadel Awaiting requested review from kadel

@tumido tumido Awaiting requested review from tumido

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@coreydaley @gazarenkov @rm3l