docs(auth)+test: audit remediation — passkey verification comments + … #94
ci.yml
on: push
Install Dependencies
28s
Matrix: Unit Tests (component)
Lint
29s
Type Check
38s
i18n Catalogs Fresh
33s
Supply Chain (audit + SBOM)
41s
E2E (fast, fake provider)
1m 23s
PR Test Summary
0s
Publish Kustomize Bundle
/
publish-kustomize-bundle
21s
Annotations
3 warnings
|
Supply Chain (audit + SBOM)
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Sensitive data should not be used in the ARG or ENV commands:
Dockerfile#L29
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "SENTRY_AUTH_TOKEN")
More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
|
|
Sensitive data should not be used in the ARG or ENV commands:
Dockerfile#L26
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ARG "SENTRY_AUTH_TOKEN")
More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
datum-cloud~auth-ui~S0YGGI.dockerbuild
|
69.5 KB |
sha256:c68ac158d591ca38d186ad16ddf29a8a4333553525c615df960e585c3340ad51
|
|
|
sbom-cyclonedx
|
81.7 KB |
sha256:5e5fb1fca305d71587e7c5c03b3e6bb6eb033fb6315e2a9ab276045789f5137c
|
|