Skip to content
cicd

update: Update anchore/sbom-action to v0.15.1 #4672

Sign in to view logs

update: Update anchore/sbom-action to v0.15.1

update: Update anchore/sbom-action to v0.15.1 #4672

Triggered via push December 21, 2023 16:48
@StarkteetjeStarkteetje
pushed febb36f
develop
Status Success
Total duration 6m 26s
Artifacts 3
This run and associated checks have been archived and are scheduled for deletion. Learn more about checks retention

cicd.yaml

on: push
conditionals
0s
conditionals
build  /  context
7s
build / context
compliance  /  ossf-scorecard
0s
compliance / ossf-scorecard
compliance  /  dependency review
0s
compliance / dependency review
compliance  /  check-commit-message
0s
compliance / check-commit-message
sast  /  codeql
2m 55s
sast / codeql
sast  /  black
7s
sast / black
sast  /  pylint
29s
sast / pylint
sast  /  bandit
27s
sast / bandit
sast  /  hadolint
21s
sast / hadolint
sast  /  kubelinter
16s
sast / kubelinter
sast  /  trivy config
32s
sast / trivy config
sast  /  checkov
36s
sast / checkov
sast  /  semgrep
34s
sast / semgrep
unit-test  /  pytest
44s
unit-test / pytest
docs  /  deploy
14s
docs / deploy
build  /  build
1m 26s
build / build
sca  /  safety
10s
sca / safety
sca  /  trivy image
36s
sca / trivy image
sca  /  grype
51s
sca / grype
sca  /  ...  /  dependency review
12s
sca / syft / dependency review
Matrix: integration-test / functional
Matrix: integration-test / k8s versions
Matrix: integration-test / optional
Matrix: integration-test / self-hosted-notary
Fit to window
Zoom out
Zoom in

Annotations

10 errors and 1 warning
sast / checkov: deployment/deployment.yaml#L3
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L27
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L44
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L59
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L121
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L143
CKV_K8S_49: "Minimize wildcard use in Roles and ClusterRoles"
sast / checkov: deployment/deployment.yaml#L181
CKV_K8S_21: "The default namespace should not be used"
sast / checkov: deployment/deployment.yaml#L203
CKV_K8S_15: "Image Pull Policy should be Always"
sast / checkov: deployment/deployment.yaml#L203
CKV_K8S_29: "Apply security context to your pods and containers"
sast / checkov: deployment/deployment.yaml#L203
CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"
sca / grype
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher

Artifacts

Produced during runtime
Name Size
cosign.pub Expired
178 Bytes
sbom.cdx Expired
522 KB
sse-secure-systems-connaisseur_sha-febb36f.cyclonedx.json Expired
522 KB