feat(ingest): add STORE_MIN_SEVERITY second-tier severity gate (#77) #121
security.yml
on: push
OSV-Scanner (SCA)
8s
Trivy (filesystem + container scan)
10s
Semgrep (SAST)
24s
Gitleaks (secret scan)
10s
jscpd (duplication < 3% on touched code)
20s
SBOM (SPDX + CycloneDX)
20s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
38.7 KB |
sha256:70ed23f979bfa1fa67bb49b86dc562008d1677c98186f99c8054c933b364e25f
|
|