Security (OSS-CLI) #19
security.yml
on: schedule
OSV-Scanner (SCA)
5s
Trivy (filesystem scan)
23s
Semgrep (SAST)
23s
Gitleaks (secret scan)
6s
jscpd (duplication < 5% on production Go)
16s
SBOM (SPDX + CycloneDX)
13s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
6.86 KB |
sha256:ef888e7e0281ee64760cc84984fbecc00291db0df11a6397bd2c2ae42bf53fef
|
|