Security Audit

Merge pull request #4 from thoughtparametersllc/copilot/add-github-wo… #11

Sign in to view logs

Triggered via push November 4, 2025 21:44

thoughtparametersllc

main

Status Failure

Total duration 1m 8s

Artifacts –

security-audit.yml

on: push

Matrix: CodeQL Analysis

Python Security Scan

Secret Scanning

Workflow Security Check

Dependency Review

Security Summary

Annotations

5 errors

Python Security Scan

This request has been automatically failed because it uses a deprecated version of `actions/upload-artifact: v3`. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Secret Scanning

Process completed with exit code 1.

Secret Scanning

BASE and HEAD commits are the same. TruffleHog won't scan anything. Please see documentation (https://github.com/trufflesecurity/trufflehog#octocat-trufflehog-github-action).

CodeQL Analysis (python)

Code Scanning could not process the submitted SARIF file: CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled

CodeQL Analysis (python)

CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/