Skip to content

Bump docker/metadata-action from 4.3.0 to 5.3.0 #646

Bump docker/metadata-action from 4.3.0 to 5.3.0

Bump docker/metadata-action from 4.3.0 to 5.3.0 #646

Triggered via pull request December 4, 2023 14:10
Status Failure
Total duration 49m 9s
Artifacts 1

analysis.yml

on: pull_request
Scorecards  /  Security Scorecards
58s
Scorecards / Security Scorecards
Sonatype Nancy  /  Sonatype Nancy
17s
Sonatype Nancy / Sonatype Nancy
Dependency Review  /  Scan dependencies for license compliance
21s
Dependency Review / Scan dependencies for license compliance
Trivy  /  Filesystem
46m 42s
Trivy / Filesystem
Trivy  /  Container
0s
Trivy / Container
FOSSA  /  Find license compliance and security issues
FOSSA / Find license compliance and security issues
Semgrep Scan  /  semgrep
Semgrep Scan / semgrep
Matrix: CodeQL
Fit to window
Zoom out
Zoom in

Annotations

6 errors and 3 warnings
Dependency Review / Scan dependencies for license compliance
StepSecurity Harden Runner: DNS resolution for domain productionresultssa2.blob.core.windows.net. was blocked. This domain is not in the list of allowed-endpoints.
Dependency Review / Scan dependencies for license compliance
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
Scorecards / Security Scorecards
StepSecurity Harden Runner: Reverting agent since allowed endpoint *.blob.core.windows.net could not be resolved
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain actions-results-receiver-production.githubapp.com. was blocked. This domain is not in the list of allowed-endpoints.
Trivy / Filesystem
The hosted runner: GitHub Actions 2 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
Dependency Review / Scan dependencies for license compliance
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
CodeQL (go) / CodeQL Analysis
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby

Artifacts

Produced during runtime
Name Size
SARIF file Expired
46.5 KB