Bump checkmarx/kics-github-action from 2.1.13 to 2.1.19 · githubabcs-devops/gh-advsec-devsecops@02f0512

Triggered via pull request February 6, 2026 05:08

opened #127

Status Success

Total duration 52s

Artifacts –

IACS-Checkmarx-kics.yml

on: pull_request

11 warnings

CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/

Azure App Service authentication settings should be enabled

Azure App Service authentication settings should be enabled

Azure Container Service (AKS) instance should have role-based access control (RBAC) enabled

Azure Kubernetes Service (AKS) API should not be exposed to the internet

The Active Directory Administrator is not configured for a SQL server

Port 3389 (Remote Desktop) is exposed to the internet

Query to find passwords and secrets in infrastructure code.

Query to find passwords and secrets in infrastructure code.

MySQL Server public access should be disabled

Default Azure Storage Account network access should be set to Deny