fix(auth): resolve confirmed findings from the Fable-5 security audit #80
ci.yml
on: push
Install Dependencies
30s
Matrix: Unit Tests (component)
Lint
27s
Type Check
39s
i18n Catalogs Fresh
33s
Supply Chain (audit + SBOM)
32s
E2E (fast, fake provider)
1m 15s
PR Test Summary
Publish Kustomize Bundle
/
publish-kustomize-bundle
18s
Annotations
3 warnings
|
Supply Chain (audit + SBOM)
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Sensitive data should not be used in the ARG or ENV commands:
Dockerfile#L29
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "SENTRY_AUTH_TOKEN")
More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
|
|
Sensitive data should not be used in the ARG or ENV commands:
Dockerfile#L26
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "SENTRY_AUTH_TOKEN")
More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
datum-cloud~auth-ui~W4LWE6.dockerbuild
|
69.3 KB |
sha256:d587e7d8a744966da8513bc817813f96cdc204e3286b82f968df20f686442cef
|
|
|
sbom-cyclonedx
|
81.2 KB |
sha256:c8a911be6003766b0bfde38a608769d2825dfcf5f641273356e4667ee2cb7aa2
|
|