Skip to content
Security (OSS-CLI)

feat(supply-chain): production-readiness PR 3 — bundle integrity + se… #77

Sign in to view logs

feat(supply-chain): production-readiness PR 3 — bundle integrity + se…

feat(supply-chain): production-readiness PR 3 — bundle integrity + se… #77

Triggered via push April 28, 2026 09:19
@aksOpsaksOps
pushed e40350f
main
Status Success
Total duration 41s
Artifacts 1

security.yml

on: push
OSV-Scanner (SCA)
5s
OSV-Scanner (SCA)
Trivy (filesystem + container scan)
28s
Trivy (filesystem + container scan)
Semgrep (SAST)
36s
Semgrep (SAST)
Gitleaks (secret scan)
12s
Gitleaks (secret scan)
jscpd (duplication < 3% on touched code)
18s
jscpd (duplication < 3% on touched code)
SBOM (SPDX + CycloneDX)
8s
SBOM (SPDX + CycloneDX)
Fit to window
Zoom out
Zoom in

Artifacts

Produced during runtime
Name Size Digest
sbom
31 KB
sha256:e84b2c3b6b528531220196e6eed8e085dec2de1228d2517bd9eaf5eb79f602b3