Skip to content
Package & Release

ci(.github)[SEC-1084]: SLSA supply chain security controls #143

Sign in to view logs

ci(.github)[SEC-1084]: SLSA supply chain security controls

ci(.github)[SEC-1084]: SLSA supply chain security controls #143

Triggered via pull request April 25, 2024 14:57
@saisatishkarrasaisatishkarra
synchronize #170
feat/slsa
Status Success
Total duration 2m 40s
Artifacts 10

release.yaml

on: pull_request
check
19s
check
build-images
1m 3s
build-images
scan-images
51s
scan-images
release-images
0s
release-images
release-images-provenance  /  detect-env
release-images-provenance / detect-env
release-images-provenance  /  generator
release-images-provenance / generator
release-images-provenance  /  final
release-images-provenance / final
Fit to window
Zoom out
Zoom in

Annotations

7 warnings
check
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
build-images
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/upload-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "docker-archive", "insomnia-mockbin-amd64-sbom.cyclonedx.json", "insomnia-mockbin-amd64-sbom.spdx.json", "sbom.cyclonedx.json", "sbom.spdx.json". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Artifacts

Produced during runtime
Name Size Digest
cve-report.json Expired
4.53 KB
sha256:b5bb2bfc3c0e38e23e03c5245c6ca6627271f655735fa2572d00aa45f6a1488c
cve-report.sarif Expired
1.65 KB
sha256:5be7c99ef97ecfba5762db3fd963fbb448fcf0a198a6f905dd8e6a9db5a9d3d2
docker-archive Expired
96.9 MB
insomnia-mockbin-amd64-cis-report.json Expired
699 Bytes
sha256:3e1f19c06ddc651fb0d903731b21b9287700a16e102eeee496a06493e64a178f
insomnia-mockbin-amd64-cve-report.json Expired
45.9 KB
sha256:f1659a4c041cf086a60462e41aac15b16f21c75db1bbff70e8d87b2eb15310eb
insomnia-mockbin-amd64-cve-report.sarif Expired
20 KB
sha256:eda8e157d0f7b4f06770e6c3a7a3ab4a3d5032a9a5fad2fc2c8344a1d4a1a213
insomnia-mockbin-amd64-sbom.cyclonedx.json Expired
864 KB
insomnia-mockbin-amd64-sbom.spdx.json Expired
3.46 MB
sbom.cyclonedx.json Expired
323 KB
sbom.spdx.json Expired
561 KB