Skip to content
Package & Release

ci(.github)[SEC-1084]: SLSA supply chain security controls #135

Sign in to view logs

ci(.github)[SEC-1084]: SLSA supply chain security controls

ci(.github)[SEC-1084]: SLSA supply chain security controls #135

Triggered via pull request April 25, 2024 04:20
@saisatishkarrasaisatishkarra
synchronize #170
feat/slsa
Status Success
Total duration 2m 27s
Artifacts 10

release.yaml

on: pull_request
check
16s
check
build-images
51s
build-images
scan-images
53s
scan-images
release-images
0s
release-images
release-images-provenance  /  detect-env
release-images-provenance / detect-env
release-images-provenance  /  generator
release-images-provenance / generator
release-images-provenance  /  final
release-images-provenance / final
Fit to window
Zoom out
Zoom in

Annotations

7 warnings
check
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
build-images
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/upload-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Failed minimum severity level. Found vulnerabilities with level 'critical' or higher
scan-images
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/download-artifact@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "docker-archive", "insomnia-mockbin-amd64-sbom.cyclonedx.json", "insomnia-mockbin-amd64-sbom.spdx.json", "sbom.cyclonedx.json", "sbom.spdx.json". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/

Artifacts

Produced during runtime
Name Size
cve-report.json Expired
4.53 KB
cve-report.sarif Expired
1.65 KB
docker-archive Expired
96.9 MB
insomnia-mockbin-amd64-cis-report.json Expired
699 Bytes
insomnia-mockbin-amd64-cve-report.json Expired
45.9 KB
insomnia-mockbin-amd64-cve-report.sarif Expired
20 KB
insomnia-mockbin-amd64-sbom.cyclonedx.json Expired
864 KB
insomnia-mockbin-amd64-sbom.spdx.json Expired
3.46 MB
sbom.cyclonedx.json Expired
323 KB
sbom.spdx.json Expired
561 KB