feat(ingest): add STORE_MIN_SEVERITY second-tier severity gate #120
security.yml
on: pull_request
OSV-Scanner (SCA)
6s
Trivy (filesystem + container scan)
15s
Semgrep (SAST)
27s
Gitleaks (secret scan)
7s
jscpd (duplication < 3% on touched code)
13s
SBOM (SPDX + CycloneDX)
19s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
38.7 KB |
sha256:9b88befedca33e12b8496c36cc7b25bf401c8e65192de7c81d9922ade8bbe38c
|
|