fix: separate release workflows for clean responsibility separation #32
security-code.yml
on: pull_request
Configuration
/
Get Configuration
6s
TruffleHog (Secrets Scan)
13s
Dependency Review
6s
Bandit (Security Scan)
/
bandit Security Scan
40s
Safety (Dependency Scan)
/
safety Security Scan
31s
Semgrep (Static Analysis)
/
semgrep Security Scan
1m 4s
Trivy (Filesystem Scan)
/
trivy-fs Security Scan
34s
CodeQL Analysis
/
security-scan
Annotations
1 warning
|
Semgrep (Static Analysis) / semgrep Security Scan
Unexpected input(s) 'generateSarif', valid inputs are ['entryPoint', 'args', 'config', 'publishToken']
|