Release System Preparation for v1.0 #5
Triggered via pull request
January 5, 2026 12:38
Status
Startup failure
Total duration
–
Artifacts
–
security-code.yml
on: pull_request
Configuration
/
Get Configuration
Dependency Review
TruffleHog (Secrets Scan)
Bandit (Security Scan)
/
security-scan
CodeQL Analysis
/
security-scan
Safety (Dependency Scan)
/
security-scan
Semgrep (Static Analysis)
/
security-scan
Trivy (Filesystem Scan)
/
security-scan
Annotations
1 error
|
Invalid workflow file:
.github/workflows/security-code.yml#L24
The workflow is not valid. .github/workflows/security-code.yml (Line: 24, Col: 3): Error calling workflow 'awslabs/open-resource-broker/.github/workflows/reusable-security.yml@88a51e6eb6d913696b93828e3a2257aec659524d'. The nested job 'security-scan' is requesting 'contents: read', but is only allowed 'contents: none'.
|