chore(security): reinstate SonarCloud as required gate (#60) #69
security.yml
on: push
OSV-Scanner (SCA)
7s
Trivy (filesystem + container scan)
20s
Semgrep (SAST)
31s
Gitleaks (secret scan)
8s
jscpd (duplication < 3% on touched code)
12s
SBOM (SPDX + CycloneDX)
24s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
43.9 KB |
sha256:96d8ba26b972867b95ea23f6ede5b86fa994bec45e0c88cf175137e3d48f561d
|
|