🛑 missing gitleaks license. Go grab one at gitleaks.io and store it as a GitHub Secret named GITLEAKS_LICENSE. For more info about the recent breaking update, see [here](https://github.com/gitleaks/gitleaks-action#-announcement).

testhelpers.TestContainer.Cleanup calls testcontainers.DockerContainer.Terminate, which eventually calls client.Client.ContainerExecCreate

testhelpers.TestContainer.Cleanup calls testcontainers.DockerContainer.Terminate, which eventually calls client.Client.ContainerExecAttach

testdb.StartSharedCockroachDB calls cockroachdb.Run, which eventually calls client.Client.ContainerCreate

testhelpers.TestContainer.Cleanup calls testcontainers.DockerContainer.Terminate, which calls client.Client.Close

testhelpers.TestContainer.Cleanup calls testcontainers.DockerContainer.Terminate, which eventually calls client.Client.ClientVersion

health.HTTPChecker.Check calls http.Client.Do, which eventually calls client.CheckRedirect

testdb.init calls testcontainers.init, which eventually calls checkpoint.init

testdb.init calls testcontainers.init, which calls build.init

testdb.init calls wait.init, which eventually calls blkiodev.init

testdb.init calls testcontainers.init, which eventually calls api.init

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: gitleaks/gitleaks-action@v2. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/dependency-review-action@v4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Suppressed allowlisted false positive(s) (Dex, Docker/Moby) — see ADR-0036