Skip to content
Security Scan

Add per-workflow issues audit to GitHub Actions review #329

Sign in to view logs

Add per-workflow issues audit to GitHub Actions review

Add per-workflow issues audit to GitHub Actions review #329

Triggered via pull request November 18, 2025 23:20
@2-Coatl2-Coatl
synchronize #280
feature/review-github-workflows-for-improvements-23-09-35
Status Failure
Total duration 9m 51s
Artifacts 1

security-scan.yml

on: pull_request
Python Security Scan (Bandit)
17s
Python Security Scan (Bandit)
NPM Security Audit
11s
NPM Security Audit
Python Dependency Check (Safety)
20s
Python Dependency Check (Safety)
Django Security Check
9s
Django Security Check
SQL Injection Check
6s
SQL Injection Check
XSS Protection Check
6s
XSS Protection Check
CSRF Protection Check
7s
CSRF Protection Check
Container Security Scan (Trivy)
23s
Container Security Scan (Trivy)
Scan for Secrets
7s
Scan for Secrets
Security Scan Summary
3s
Security Scan Summary
Generate Security Report
5s
Generate Security Report
Fit to window
Zoom out
Zoom in

Annotations

8 errors and 3 warnings
Django Security Check
Process completed with exit code 1.
Python Security Scan (Bandit)
Process completed with exit code 1.
NPM Security Audit
Process completed with exit code 1.
Container Security Scan (Trivy)
Container Security Scan (Trivy)
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
SQL Injection Check
Process completed with exit code 1.
CSRF Protection Check
Process completed with exit code 1.
Security Scan Summary
Process completed with exit code 1.
Python Dependency Check (Safety)
No files were found with the provided path: api/safety-report.json. No artifacts will be uploaded.
Container Security Scan (Trivy)
Caught an exception while gathering information for telemetry: HttpError: Resource not accessible by integration - https://docs.github.com/rest/actions/workflow-runs#get-a-workflow-run. Will skip sending status report.
Container Security Scan (Trivy)
Caught an exception while gathering information for telemetry: HttpError: Resource not accessible by integration - https://docs.github.com/rest/actions/workflow-runs#get-a-workflow-run. Will skip sending status report.

Artifacts

Produced during runtime
Name Size Digest
security-report Expired
651 Bytes
sha256:3358a36ca71290efa9cfa7491d5d04baf9bc74b9db89e4d9b57f3c69c123f56f