chore(sonar): Phase 1 maintainability cleanup (~50 issues) (#75) #117
security.yml
on: push
OSV-Scanner (SCA)
6s
Trivy (filesystem + container scan)
20s
Semgrep (SAST)
28s
Gitleaks (secret scan)
6s
jscpd (duplication < 3% on touched code)
11s
SBOM (SPDX + CycloneDX)
25s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
38.8 KB |
sha256:e22854850f0ec4479da77219939fb0875d86a249c1654e09b6189a9a3f0c4142
|
|