feat(security): prod-readiness PR 1 of 5 — bearer auth, security head… #75
aksOpssecurity.yml
on: push
OSV-Scanner (SCA)
8s
Trivy (filesystem + container scan)
30s
Semgrep (SAST)
28s
Gitleaks (secret scan)
15s
jscpd (duplication < 3% on touched code)
14s
SBOM (SPDX + CycloneDX)
10s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
31 KB |
sha256:8d583e1565713ad9c20363cfc5a02d00d8952661a9091583a3401733fdcacb84
|
|