fix: separate release workflows for clean responsibility separation #34
security-code.yml
on: pull_request
Configuration
/
Get Configuration
8s
TruffleHog (Secrets Scan)
11s
Dependency Review
6s
Bandit (Security Scan)
/
bandit Security Scan
35s
Safety (Dependency Scan)
/
safety Security Scan
30s
Semgrep (Static Analysis)
/
semgrep Security Scan
1m 3s
Trivy (Filesystem Scan)
/
trivy-fs Security Scan
34s
CodeQL Analysis
/
security-scan
Annotations
1 warning
|
Semgrep (Static Analysis) / semgrep Security Scan
Unexpected input(s) 'generateSarif', valid inputs are ['entryPoint', 'args', 'config', 'publishToken']
|