Skip to content

ci: do not specify cosign version #700

ci: do not specify cosign version

ci: do not specify cosign version #700

Triggered via push February 11, 2024 06:28
Status Success
Total duration 2m 17s
Artifacts 1

analysis.yml

on: push
Sonatype Nancy  /  Sonatype Nancy
22s
Sonatype Nancy / Sonatype Nancy
Semgrep Scan  /  semgrep
21s
Semgrep Scan / semgrep
FOSSA  /  Find license compliance and security issues
23s
FOSSA / Find license compliance and security issues
Dependency Review  /  Scan dependencies for license compliance
23s
Dependency Review / Scan dependencies for license compliance
Trivy  /  Filesystem
34s
Trivy / Filesystem
Trivy  /  Container
0s
Trivy / Container
Scorecards  /  Security Scorecards
Scorecards / Security Scorecards
Matrix: CodeQL
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 8 warnings
Dependency Review / Scan dependencies for license compliance
StepSecurity Harden Runner: DNS resolution for domain results-receiver.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
Dependency Review / Scan dependencies for license compliance
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
Semgrep Scan / semgrep
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
Sonatype Nancy / Sonatype Nancy
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
FOSSA / Find license compliance and security issues
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, fossas/fossa-action@f61a4c0c263690f2ddb54b9822a719c25a7b608f. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
Dependency Review / Scan dependencies for license compliance
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, actions/dependency-review-action@c090f4e553673e6e505ea70d6a95362ee12adb94. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
Dependency Review / Scan dependencies for license compliance
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
Trivy / Filesystem
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce, github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
CodeQL (go) / CodeQL Analysis
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, github/codeql-action/init@f0a12816612c7306b485a22cb164feb43c6df818, github/codeql-action/autobuild@f0a12816612c7306b485a22cb164feb43c6df818, github/codeql-action/analyze@f0a12816612c7306b485a22cb164feb43c6df818. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby

Artifacts

Produced during runtime
Name Size
SARIF file Expired
36.1 KB