feat: port codeiq from Java/Spring Boot to Go single-binary (Phases 1-4) #130
security.yml
on: pull_request
OSV-Scanner (SCA)
6s
Trivy (filesystem + container scan)
12s
Semgrep (SAST)
44s
Gitleaks (secret scan)
12s
jscpd (duplication < 3% on touched code)
13s
SBOM (SPDX + CycloneDX)
19s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
23.5 KB |
sha256:5208a8d8c0db89f9b50bc1d3f6ccc324e6b1c9fa2938ecbe89d17dd8a91995d0
|
|