Skip to content
Package & Release

ci(.github)[SEC-1084]: SLSA supply chain security controls #144

Sign in to view logs

ci(.github)[SEC-1084]: SLSA supply chain security controls

ci(.github)[SEC-1084]: SLSA supply chain security controls #144

Triggered via pull request April 25, 2024 17:24
@saisatishkarrasaisatishkarra
synchronize #170
feat/slsa
Status Success
Total duration 2m 31s
Artifacts 10

release.yaml

on: pull_request
check
27s
check
build-images
53s
build-images
scan-images
45s
scan-images
release-images
0s
release-images
release-images-provenance  /  detect-env
release-images-provenance / detect-env
release-images-provenance  /  generator
release-images-provenance / generator
release-images-provenance  /  final
release-images-provenance / final
Fit to window
Zoom out
Zoom in

Annotations

7 warnings
check
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
build-images
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/upload-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "docker-archive", "insomnia-mockbin-amd64-sbom.cyclonedx.json", "insomnia-mockbin-amd64-sbom.spdx.json", "sbom.cyclonedx.json", "sbom.spdx.json". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Artifacts

Produced during runtime
Name Size Digest
cve-report.json Expired
4.53 KB
sha256:ef7b10fc94172d72c69f7e6455bc11de889933d60d37e6434f9261c9372819d3
cve-report.sarif Expired
1.65 KB
sha256:680f9a7429f7a4d5584390d6c4d9d29399eacceac71e9b3408d8ff33e94d684e
docker-archive Expired
96.9 MB
insomnia-mockbin-amd64-cis-report.json Expired
699 Bytes
sha256:849ab811e9a6361c391a9488534199f5a4bb5c3648cdd299cb60ca28a365996a
insomnia-mockbin-amd64-cve-report.json Expired
45.9 KB
sha256:1417c5d6284437022147c9c8e99ebf6a0b5643ec23f0daface8e7daa785eba0f
insomnia-mockbin-amd64-cve-report.sarif Expired
20 KB
sha256:35d5a4bd295edffd5b9f1a7bddb278d0ffb38115844cd4b19b766f160a5cec0a
insomnia-mockbin-amd64-sbom.cyclonedx.json Expired
864 KB
insomnia-mockbin-amd64-sbom.spdx.json Expired
3.46 MB
sbom.cyclonedx.json Expired
323 KB
sbom.spdx.json Expired
561 KB