Honor ignore files and exclude tests from scans #14
security.yml
on: pull_request
OSV-Scanner (SCA)
5s
Trivy (filesystem scan)
12s
Semgrep (SAST)
20s
Gitleaks (secret scan)
6s
jscpd (duplication < 5% on production Go)
15s
SBOM (SPDX + CycloneDX)
17s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
6.86 KB |
sha256:4da054b71a6a56be544d9ca98607223c9f2f857f5ca05e77c7aad5684bc2cf17
|
|