Skip to content
[Blocking] Dependency Review

chore: bump github.com/aquasecurity/trivy from 0.51.4 to 0.53.0 #1476

Sign in to view logs

chore: bump github.com/aquasecurity/trivy from 0.51.4 to 0.53.0

chore: bump github.com/aquasecurity/trivy from 0.51.4 to 0.53.0 #1476

Triggered via pull request July 29, 2024 17:42
@dependabotdependabot[bot]
synchronize #684
dependabot/go_modules/github.com/aquasecurity/trivy-0.53.0
Status Failure
Total duration 51s
Artifacts

dependency-review.yml

on: pull_request
dependency-review
31s
dependency-review
vuln-check
44s
vuln-check
Fit to window
Zoom out
Zoom in

Annotations

3 errors and 4 warnings
vuln-check
cannot use (*meter)(nil) (value of type *meter) as "go.opentelemetry.io/otel/metric".Meter value in variable declaration: *meter does not implement "go.opentelemetry.io/otel/metric".Meter (missing method Float64Gauge)
vuln-check
cannot use mp.meters.Lookup(s, (func() *meter literal)) (value of type *meter) as "go.opentelemetry.io/otel/metric".Meter value in return statement: *meter does not implement "go.opentelemetry.io/otel/metric".Meter (missing method Float64Gauge)
vuln-check
Process completed with exit code 1.
OpenSSF Scorecard Warning
gomod/github.com/OneOfOne/xxhash has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.
OpenSSF Scorecard Warning
gomod/github.com/agext/levenshtein has an OpenSSF Scorecard of 2.8, which is less than this repository's threshold of 3.
OpenSSF Scorecard Warning
gomod/github.com/zclconf/go-cty-yaml has an OpenSSF Scorecard of 2.8, which is less than this repository's threshold of 3.
vuln-check
Restore cache failed: Dependencies file is not found in /home/runner/work/copacetic/copacetic. Supported file pattern: go.sum