Merge pull request #790 from complytime/dependabot/github_actions/dot… · hbraswelrh/complyscribe@abd618d

Triggered via push February 21, 2026 19:14

hbraswelrh

pushed abd618d

main

Status Startup failure

Total duration –

Artifacts –

ci_security.yml

on: push

OSV-Scanner / ... / osv-scan

OSV-Scanner / Trivy Image Scan

OSV-Scanner / Trivy Source Scan

OpenSSF Scorecards / OpenSSF Scorecards

Annotations

1 error

Invalid workflow file: .github/workflows/ci_security.yml#L18

The workflow is not valid. .github/workflows/ci_security.yml (Line: 18, Col: 3): Error calling workflow 'complytime/org-infra/.github/workflows/reusable_vuln_scan.yml@main'. The nested job 'trivy_image' is requesting 'packages: write, id-token: write', but is only allowed 'packages: none, id-token: none'.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Merge pull request #790 from complytime/dependabot/github_actions/dot… #5

Summary

Merge pull request #790 from complytime/dependabot/github_actions/dot… #5

Uh oh!

ci_security.yml

Annotations