Skip to content

Update step-security/harden-runner action to v2.9.1 #76

Update step-security/harden-runner action to v2.9.1

Update step-security/harden-runner action to v2.9.1 #76

Triggered via pull request October 3, 2023 02:57
Status Failure
Total duration 58m 25s
Artifacts

analysis.yml

on: pull_request
Scorecards  /  Security Scorecards
49m 39s
Scorecards / Security Scorecards
Sonatype Nancy  /  Sonatype Nancy
47s
Sonatype Nancy / Sonatype Nancy
Semgrep Scan  /  semgrep
45s
Semgrep Scan / semgrep
Dependency Review  /  Scan dependencies for license compliance
21s
Dependency Review / Scan dependencies for license compliance
Trivy  /  Filesystem
48m 59s
Trivy / Filesystem
Trivy  /  Container
0s
Trivy / Container
FOSSA  /  Find license compliance and security issues
FOSSA / Find license compliance and security issues
Matrix: CodeQL
Fit to window
Zoom out
Zoom in

Annotations

6 errors and 5 warnings
Sonatype Nancy / Sonatype Nancy
StepSecurity Harden Runner: DNS resolution for domain actions-results-receiver-production.githubapp.com. was blocked. This domain is not in the list of allowed-endpoints.
Sonatype Nancy / Sonatype Nancy
StepSecurity Harden Runner: DNS resolution for domain acghubeus1.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain actions-results-receiver-production.githubapp.com. was blocked. This domain is not in the list of allowed-endpoints.
Scorecards / Security Scorecards
The hosted runner: GitHub Actions 2 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
Trivy / Filesystem
The hosted runner: GitHub Actions 3 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
Dependency Review / Scan dependencies for license compliance
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Sonatype Nancy / Sonatype Nancy
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Sonatype Nancy / Sonatype Nancy
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Sonatype Nancy / Sonatype Nancy
Failed to restore: getCacheEntry failed: connect ECONNREFUSED 54.185.253.63:443
CodeQL (go) / CodeQL Analysis
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443