Skip to content
Security Scan

Refine workflow remediation plan with environment-specific strategy #331

Sign in to view logs

Refine workflow remediation plan with environment-specific strategy

Refine workflow remediation plan with environment-specific strategy #331

Triggered via pull request November 18, 2025 23:44
@NestorMonroyNestorMonroy
synchronize #281
feature/review-github-workflows-for-improvements-23-33-56
Status Failure
Total duration 45s
Artifacts 1

security-scan.yml

on: pull_request
Python Security Scan (Bandit)
18s
Python Security Scan (Bandit)
NPM Security Audit
12s
NPM Security Audit
Python Dependency Check (Safety)
20s
Python Dependency Check (Safety)
Django Security Check
9s
Django Security Check
SQL Injection Check
6s
SQL Injection Check
XSS Protection Check
4s
XSS Protection Check
CSRF Protection Check
6s
CSRF Protection Check
Container Security Scan (Trivy)
24s
Container Security Scan (Trivy)
Scan for Secrets
9s
Scan for Secrets
Security Scan Summary
4s
Security Scan Summary
Generate Security Report
6s
Generate Security Report
Fit to window
Zoom out
Zoom in

Annotations

8 errors and 3 warnings
Django Security Check
Process completed with exit code 1.
NPM Security Audit
Process completed with exit code 1.
Python Security Scan (Bandit)
Process completed with exit code 1.
SQL Injection Check
Process completed with exit code 1.
Container Security Scan (Trivy)
Container Security Scan (Trivy)
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
CSRF Protection Check
Process completed with exit code 1.
Security Scan Summary
Process completed with exit code 1.
Python Dependency Check (Safety)
No files were found with the provided path: api/safety-report.json. No artifacts will be uploaded.
Container Security Scan (Trivy)
Caught an exception while gathering information for telemetry: HttpError: Resource not accessible by integration - https://docs.github.com/rest/actions/workflow-runs#get-a-workflow-run. Will skip sending status report.
Container Security Scan (Trivy)
Caught an exception while gathering information for telemetry: HttpError: Resource not accessible by integration - https://docs.github.com/rest/actions/workflow-runs#get-a-workflow-run. Will skip sending status report.

Artifacts

Produced during runtime
Name Size Digest
security-report Expired
650 Bytes
sha256:d1d2ec77265537083b59834e8cebc917e682c4f6d703696f1d3f614a9919ee94