fix: complete semantic-release workflow with asset uploads and yq fallbacks #85
security-code.yml
on: pull_request
Configuration
/
Get Configuration
12s
TruffleHog (Secrets Scan)
15s
Dependency Review
7s
Bandit (Security Scan)
/
bandit Security Scan
45s
Safety (Dependency Scan)
/
safety Security Scan
34s
Semgrep (Static Analysis)
/
semgrep Security Scan
1m 2s
Trivy (Filesystem Scan)
/
trivy-fs Security Scan
29s
CodeQL Analysis
/
security-scan
Annotations
1 warning
|
Semgrep (Static Analysis) / semgrep Security Scan
Unexpected input(s) 'generateSarif', valid inputs are ['entryPoint', 'args', 'config', 'publishToken']
|