Add validation arg to contracts command #2335
Annotations
6 warnings
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, docker/metadata-action@v4, docker/login-action@v2, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
Run docker/build-push-action@v6:
dockerfiles/Dockerfile.cloud#L29
FromAsCasing: 'as' and 'FROM' keywords' casing do not match
More info: https://docs.docker.com/go/dockerfile/rule/from-as-casing/
|
Run docker/build-push-action@v6:
dockerfiles/Dockerfile.cloud#L143
UndefinedVar: Usage of undefined variable '$GOPATH' (did you mean $PATH?)
More info: https://docs.docker.com/go/dockerfile/rule/undefined-var/
|
Run docker/build-push-action@v6:
dockerfiles/Dockerfile.cloud#L163
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "GOOGLE_APPLICATION_CREDENTIALS")
More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
|
Run docker/build-push-action@v6:
dockerfiles/Dockerfile.cloud#L164
JSONArgsRecommended: JSON arguments recommended for CMD to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
Upload Trivy scan results to GitHub Security tab
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
Loading