Skip to content

Bump step-security/harden-runner from 1.5.0 to 2.6.0 #609

Bump step-security/harden-runner from 1.5.0 to 2.6.0

Bump step-security/harden-runner from 1.5.0 to 2.6.0 #609

Triggered via pull request October 3, 2023 14:40
Status Failure
Total duration 1h 24m 13s
Artifacts
This run and associated checks have been archived and are scheduled for deletion. Learn more about checks retention

analysis.yml

on: pull_request
Scorecards  /  Security Scorecards
49m 42s
Scorecards / Security Scorecards
Sonatype Nancy  /  Sonatype Nancy
1m 6s
Sonatype Nancy / Sonatype Nancy
Dependency Review  /  Scan dependencies for license compliance
21s
Dependency Review / Scan dependencies for license compliance
Trivy  /  Filesystem
49m 26s
Trivy / Filesystem
Trivy  /  Container
0s
Trivy / Container
FOSSA  /  Find license compliance and security issues
FOSSA / Find license compliance and security issues
Semgrep Scan  /  semgrep
Semgrep Scan / semgrep
Matrix: CodeQL
Fit to window
Zoom out
Zoom in

Annotations

5 errors and 5 warnings
Sonatype Nancy / Sonatype Nancy
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
Sonatype Nancy / Sonatype Nancy
StepSecurity Harden Runner: DNS resolution for domain acghubeus1.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
Scorecards / Security Scorecards
The hosted runner: GitHub Actions 2 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
Trivy / Filesystem
The hosted runner: GitHub Actions 4 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
CodeQL (go) / CodeQL Analysis
The hosted runner: GitHub Actions 5 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
Dependency Review / Scan dependencies for license compliance
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Sonatype Nancy / Sonatype Nancy
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Sonatype Nancy / Sonatype Nancy
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Sonatype Nancy / Sonatype Nancy
Failed to restore: getCacheEntry failed: connect ECONNREFUSED 54.185.253.63:443
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby