Skip to content
Security Scan

Add public-samples/trail-project-1-n75ia4/infrastructure/kubernetes/s… #26

Sign in to view logs

Add public-samples/trail-project-1-n75ia4/infrastructure/kubernetes/s…

Add public-samples/trail-project-1-n75ia4/infrastructure/kubernetes/s… #26

Triggered via push December 30, 2024 22:34
@siddhantppsiddhantpp
pushed e52e83b
main
Status Failure
Total duration 2m 21s
Artifacts 1

security-scan.yml

on: push
Dependency Vulnerability Scan
5s
Dependency Vulnerability Scan
Static Application Security Testing
45s
Static Application Security Testing
Secret and Sensitive Data Detection
4s
Secret and Sensitive Data Detection
Generate Security Report
2s
Generate Security Report
Fit to window
Zoom out
Zoom in

Annotations

4 errors and 8 warnings
Secret and Sensitive Data Detection
🛑 missing gitleaks license. Go grab one at gitleaks.io and store it as a GitHub Secret named GITLEAKS_LICENSE. For more info about the recent breaking update, see [here](https://github.com/gitleaks/gitleaks-action#-announcement).
Dependency Vulnerability Scan
Dependencies lock file is not found in /home/runner/work/trail-project-1-n75ia4/trail-project-1-n75ia4. Supported file patterns: package-lock.json,npm-shrinkwrap.json,yarn.lock
Generate Security Report
Process completed with exit code 1.
Generate Security Report
At least one of 'to', 'cc' or 'bcc' must be specified
Secret and Sensitive Data Detection
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Secret and Sensitive Data Detection
Unexpected input(s) 'config-path', 'verbose', valid inputs are ['']
Secret and Sensitive Data Detection
No files were found with the provided path: results.sarif. No artifacts will be uploaded.
Dependency Vulnerability Scan
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Static Application Security Testing
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Static Application Security Testing
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
Generate Security Report
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "codeql-sarif-results". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Artifacts

Produced during runtime
Name Size
codeql-sarif-results
584 KB