Merge pull request #8 from thoughtparametersllc/dependabot/github_act… #19
thoughtparametersllcsecurity-audit.yml
on: push
Matrix: CodeQL Analysis
Python Security Scan
34s
Secret Scanning
4s
Workflow Security Check
3s
Dependency Review
0s
Security Summary
3s
Annotations
4 errors
|
Secret Scanning
Process completed with exit code 1.
|
|
Secret Scanning
BASE and HEAD commits are the same. TruffleHog won't scan anything. Please see documentation (https://github.com/trufflesecurity/trufflehog#octocat-trufflehog-github-action).
|
|
CodeQL Analysis (python)
Code Scanning could not process the submitted SARIF file:
CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled
|
|
CodeQL Analysis (python)
CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
bandit-security-report
|
375 Bytes |
sha256:129ca315abf00944799951bbb3a331158b1691f39904f033b8dc6f65f7aaf32a
|
|
|
safety-security-report
|
3.46 KB |
sha256:7bafb82ec57932855115f3f64bf83969e09a198b6fcd39eea37757bbe7a4f1bc
|
|