Skip to content
Build and Publish Containers

feat: add Trivy security scanning and SBOM generation #16

Sign in to view logs

feat: add Trivy security scanning and SBOM generation

feat: add Trivy security scanning and SBOM generation #16

Triggered via push December 21, 2025 20:06
@jmcombsjmcombs
pushed c6287d9
main
Status Success
Total duration 30m 50s
Artifacts 3

build-and-publish.yml

on: push
build-and-publish
29m 19s
build-and-publish
Matrix: security-scan
Fit to window
Zoom out
Zoom in

Annotations

3 warnings
security-scan (base-ubuntu)
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
security-scan (node)
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
security-scan (python)
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/

Artifacts

Produced during runtime
Name Size Digest
sbom-base-ubuntu Expired
20 KB
sha256:0ac41a1aad44f4f1fb36c8688ba829511056078dc844c24abf9bec8727b00af7
sbom-node Expired
64.7 KB
sha256:17358cff26a4254fdd52c0f5f9091a779a01c2c43b8ae93d3d65df4480ba2565
sbom-python Expired
48.3 KB
sha256:a77edfbc76df2de2c09ff9954d4e30371aa09062680d787d983624d484934e56