Security (OSS-CLI) #59
security.yml
on: schedule
OSV-Scanner (SCA)
52s
Trivy (filesystem scan)
12s
Semgrep (SAST)
19s
Gitleaks (secret scan)
8s
jscpd (duplication < 3% on production code)
15s
SBOM (SPDX + CycloneDX)
9s
Annotations
2 errors and 2 warnings
|
Trivy (filesystem scan)
Process completed with exit code 1.
|
|
OSV-Scanner (SCA)
Process completed with exit code 1.
|
|
SBOM (SPDX + CycloneDX)
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: anchore/sbom-action@fc46e51fd3cb168ffb36c6d1915723c47db58abb. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
jscpd (duplication < 3% on production code)
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
67.6 KB |
sha256:f3bf97b4e9fd73d490081e07d7116111c09de28c4abf240bc39af095bd74db86
|
|