Honor ignore files and exclude tests from scans (#5) #17
security.yml
on: push
OSV-Scanner (SCA)
5s
Trivy (filesystem scan)
15s
Semgrep (SAST)
21s
Gitleaks (secret scan)
6s
jscpd (duplication < 5% on production Go)
15s
SBOM (SPDX + CycloneDX)
13s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
6.86 KB |
sha256:3398ed7c0090b4e0274ddd2f6a9595d9a5c18b0f6bcc8b190652b1ae5377e5b1
|
|