Release System Preparation for v1.0 #3
Triggered via pull request
January 5, 2026 12:25
Status
Startup failure
Total duration
–
Artifacts
–
security-code.yml
on: pull_request
Configuration
/
Get Configuration
Dependency Review
TruffleHog (Secrets Scan)
Bandit (Security Scan)
/
security-scan
CodeQL Analysis
/
security-scan
Safety (Dependency Scan)
/
security-scan
Semgrep (Static Analysis)
/
security-scan
Trivy (Filesystem Scan)
/
security-scan
Annotations
1 error
|
Invalid workflow file:
.github/workflows/security-code.yml#L24
The workflow is not valid. .github/workflows/security-code.yml (Line: 24, Col: 3): Error calling workflow 'awslabs/open-resource-broker/.github/workflows/reusable-security.yml@caf9ec16646574dda9b26f083a8db5c5fd743d52'. The nested job 'security-scan' is requesting 'contents: read', but is only allowed 'contents: none'.
|