这是indexloc提供的服务,不要输入任何密码
Skip to content
Security Analysis

Security Analysis #26

Sign in to view logs

Security Analysis

Security Analysis #26

Triggered via schedule November 9, 2025 02:39
@drzodrzo
e7f6fe7
main
Status Success
Total duration 1m 47s
Artifacts 4

security.yaml

on: schedule
Dependency Vulnerability Scan
1m 1s
Dependency Vulnerability Scan
Secrets Detection
8s
Secrets Detection
Matrix: CodeQL Analysis
Fit to window
Zoom out
Zoom in

Annotations

1 error and 7 warnings
Dependency Vulnerability Scan
Process completed with exit code 1.
Dependency Vulnerability Scan
No files were found with the provided path: sbom.spdx.json **/sbom.spdx.json. No artifacts will be uploaded.
CodeQL Analysis (javascript)
Failed to upload database for javascript: HttpError: Resource not accessible by integration - https://docs.github.com/rest
CodeQL Analysis (javascript)
1 issue was detected with this workflow: CodeQL language 'javascript' is referenced by more than one entry in the 'language' matrix parameter for job 'codeql'. This may result in duplicate alerts. Please edit the 'language' matrix parameter to keep only one of the following: 'javascript', 'typescript'.
CodeQL Analysis (javascript)
This run of the CodeQL Action does not have permission to access the CodeQL Action API endpoints. This could be because the Action is running on a pull request from a fork. If not, please ensure the workflow has at least the 'security-events: read' permission. Details: Resource not accessible by integration - https://docs.github.com/rest
CodeQL Analysis (typescript)
Failed to upload database for javascript: HttpError: Resource not accessible by integration - https://docs.github.com/rest
CodeQL Analysis (typescript)
1 issue was detected with this workflow: CodeQL language 'javascript' is referenced by more than one entry in the 'language' matrix parameter for job 'codeql'. This may result in duplicate alerts. Please edit the 'language' matrix parameter to keep only one of the following: 'javascript', 'typescript'.
CodeQL Analysis (typescript)
This run of the CodeQL Action does not have permission to access the CodeQL Action API endpoints. This could be because the Action is running on a pull request from a fork. If not, please ensure the workflow has at least the 'security-events: read' permission. Details: Resource not accessible by integration - https://docs.github.com/rest

Artifacts

Produced during runtime
Name Size Digest
codeql-results-javascript
151 KB
sha256:fe01dcf82b3e63b071548fddad00f44a8eea7927b134183dc70bcb9299780b14
codeql-results-typescript
151 KB
sha256:ce4501ef0f02ede8adf39d3752f0a40cd2a42deb9a7b054ffba88df918d12119
sbom.spdx.json
322 KB
sha256:11795c45882235c8b67460a3a5ddde642389b9dca2c2f1cb151ef0af1b4e6551
trivy-secrets-results
494 Bytes
sha256:53bfedf0b05b5589715a03144655bc6ee49a256ca144e1df762768abbc6ca769