Skip to content
Analysis

Bump github.com/nbd-wtf/go-nostr from 0.17.1-0.20230426111250-32ca737acf77 to 0.43.0 #1017

Sign in to view logs

Bump github.com/nbd-wtf/go-nostr from 0.17.1-0.20230426111250-32ca737acf77 to 0.43.0

Bump github.com/nbd-wtf/go-nostr from 0.17.1-0.20230426111250-32ca737acf77 to 0.43.0 #1017

Triggered via pull request December 9, 2024 14:37
@dependabotdependabot[bot]
opened #615
dependabot/go_modules/github.com/nbd-wtf/go-nostr-0.43.0
Status Failure
Total duration 5m 33s
Artifacts 1

analysis.yml

on: pull_request
Scorecards  /  Security Scorecards
30s
Scorecards / Security Scorecards
Sonatype Nancy  /  Sonatype Nancy
5m 21s
Sonatype Nancy / Sonatype Nancy
Dependency Review  /  Scan dependencies for license compliance
14s
Dependency Review / Scan dependencies for license compliance
Trivy  /  Filesystem
36s
Trivy / Filesystem
Trivy  /  Container
0s
Trivy / Container
FOSSA  /  Find license compliance and security issues
FOSSA / Find license compliance and security issues
Semgrep Scan  /  semgrep
Semgrep Scan / semgrep
Matrix: CodeQL
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 7 warnings
Dependency Review / Scan dependencies for license compliance
fetch failed
Sonatype Nancy / Sonatype Nancy
Command failed: go env GOPATH go: downloading go1.23.4 (linux/amd64) go: download go1.23.4: golang.org/[email protected]: Get "https://storage.googleapis.com/proxy-golang-org-prod/54a29cd0b6f871c2-golang.org:toolchain-v0.0.1-go1.23.4.linux-amd64.zip?Expires=1733832372&GoogleAccessId=gcs-urlsigner-prod%40golang-modproxy.iam.gserviceaccount.com&Signature=c2Id12FziZIAVHk6Z6UypGb8oSMi85uDhnpmrMiu5%2Ft%2FXPoLnF%2Fwb0eEZ6h1Mk%2FZRGdxEaeTEO%2FMnF%2Bhn0T%2FAXR%2Fvx6ux1Brmu2k5Ucbhjy0SD27AhMF0CQp0vEU0Fl%2FtDUV416UROK7jXRUH7YXkarJ4FF4Nh%2FvRCnFSep0QhYSzlSP%2Bogy0M9FKEGPFpiLP5Zc2KZ9bW3Bcxl0NN074urfQOegL1pIs7JAC%2BpALiHY%2FLWOtwJ8f8NYq4NBy2U20sAZhEGP2GNx81B7vRNLrsoNaNr084QtXrlpSA6YT%2BI8DXzXMrxZdWezccsZOaYUBNtVGi%2BTM8A1U5OKDMqAPg%3D%3D": dial tcp 54.185.253.63:443: connect: connection refused
Dependency Review / Scan dependencies for license compliance
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Scorecards / Security Scorecards
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Trivy / Filesystem
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
CodeQL (go) / CodeQL Analysis
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby
Sonatype Nancy / Sonatype Nancy
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "SARIF file". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Artifacts

Produced during runtime
Name Size
SARIF file
47.1 KB