Skip to content
pr2main

semgr8s v0.1.10 #26

Sign in to view logs

semgr8s v0.1.10

semgr8s v0.1.10 #26

Triggered via pull request April 16, 2024 15:53
@xophamxopham
opened #182
dev
Status Success
Total duration 3m 59s
Artifacts 2

pr2main.yml

on: pull_request
ci  /  conditionals
0s
ci / conditionals
ci  /  ...  /  context
7s
ci / build / context
ci  /  ...  /  ossf-scorecard
16s
ci / compliance / ossf-scorecard
ci  /  ...  /  dependency review
47s
ci / compliance / dependency review
ci  /  ...  /  check-commit-message
4s
ci / compliance / check-commit-message
ci  /  ...  /  unit tests
56s
ci / unit-test / unit tests
ci  /  ...  /  bandit
40s
ci / sast / bandit
ci  /  ...  /  black
34s
ci / sast / black
ci  /  ...  /  checkov
34s
ci / sast / checkov
ci  /  ...  /  codeql
1m 36s
ci / sast / codeql
ci  /  ...  /  hadolint
19s
ci / sast / hadolint
ci  /  ...  /  kubelinter
14s
ci / sast / kubelinter
ci  /  ...  /  pylint
36s
ci / sast / pylint
ci  /  ...  /  semgrep
38s
ci / sast / semgrep
ci  /  ...  /  trivy config
31s
ci / sast / trivy config
ci  /  ...  /  docs
22s
ci / docs / docs
ci  /  ...  /  build
1m 27s
ci / build / build
ci  /  ...  /  trivy image
48s
ci / sca / trivy image
ci  /  ...  /  grype
42s
ci / sca / grype
ci  /  ...  /  dependency review
19s
ci / sca / syft / dependency review
Matrix: ci / integration-test / functional
Matrix: ci / integration-test / k8s versions
Matrix: ci / integration-test / optional
Matrix: ci / integration-test / optional k8s versions
Fit to window
Zoom out
Zoom in

Annotations

11 errors and 8 warnings
ci / sast / kubelinter
Process completed with exit code 1.
ci / sast / checkov: deployment/deployment.yaml#L3
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L15
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L31
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L46
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L82
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L82
CKV_K8S_49: "Minimize wildcard use in Roles and ClusterRoles"
ci / sast / checkov: deployment/deployment.yaml#L98
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L118
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L138
CKV_K8S_21: "The default namespace should not be used"
ci / sast / checkov: deployment/deployment.yaml#L138
CKV_K8S_29: "Apply security context to your pods and containers"
ci / build / context
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/metadata-action@507c2f2dc502c992ad446e3d7a5dfbe311567a96. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / sast / trivy config
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: github/codeql-action/upload-sarif@32dc499307d133bb5085bae78498c0ac2cf762d5. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / compliance / dependency review
Unable to comment summary to pull-request, received error: Validation Failed: {"resource":"IssueComment","code":"unprocessable","field":"data","message":"Body is too long (maximum is 65536 characters)"}
ci / sast / codeql
1 issue was detected with this workflow: Please specify an on.push hook to analyze and see code scanning alerts from the default branch on the Security tab.
ci / build / build
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/setup-buildx-action@f03ac48505955848960e80bbb68046aa35c7b9e7, docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a, docker/build-push-action@3b5e8027fcad23fda98b2e3ac259d8d67585f671, anchore/sbom-action@07978da4bdb4faa726e52dfc6b1bed63d4b56479. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / sca / grype
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
ci / sca / grype
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a, anchore/scan-action@dafbc97d7259af88b61bd260f2fde565d0668a72, github/codeql-action/upload-sarif@32dc499307d133bb5085bae78498c0ac2cf762d5. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
ci / sca / trivy image
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: docker/login-action@f4ef78c080cd8ba55a85445d5b36e214a81df20a, github/codeql-action/upload-sarif@32dc499307d133bb5085bae78498c0ac2cf762d5. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.

Artifacts

Produced during runtime
Name Size
sbom.cdx Expired
208 KB
sse-secure-systems-semgr8s-test_sha-234ebbf.cyclonedx.json Expired
179 KB