Honor ignore files and exclude tests from scans #15
security.yml
on: pull_request
OSV-Scanner (SCA)
7s
Trivy (filesystem scan)
9s
Semgrep (SAST)
20s
Gitleaks (secret scan)
5s
jscpd (duplication < 5% on production Go)
13s
SBOM (SPDX + CycloneDX)
15s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
6.86 KB |
sha256:6f38a0f9223ae7cacaec4e35ced68ef3b4f239888980212cf584f7dc0b1867fe
|
|