chore(sonar): Phase 1 maintainability cleanup (~50 issues) #115
security.yml
on: pull_request
OSV-Scanner (SCA)
6s
Trivy (filesystem + container scan)
23s
Semgrep (SAST)
22s
Gitleaks (secret scan)
10s
jscpd (duplication < 3% on touched code)
17s
SBOM (SPDX + CycloneDX)
19s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
38.8 KB |
sha256:28d48fad14855d5ccd57db544eb29e776a1e6023e89d5b3d9431e92b9484c7b9
|
|