[gha] bump open-edge-platform/orch-ci/.github/workflows/post-merge.yml from 072332a8215754f6496bf97c8f3c7559dba5fdc1 to a54943a045a0f86e4e3f6807d2579fca50baf4fb #770
dependabot[bot]pre-merge.yml
on: pull_request
pre-merge
/
sanitize-project-folder
4s
pre-merge
/
license-compliance-check
15s
pre-merge
/
zizmor-scan
6s
pre-merge
/
secrets-gitleaks-scan
21s
pre-merge
/
trivy-filesystem-scan
16s
pre-merge
/
trivy-critical-scan
18s
pre-merge
/
trivy-config-scan
16s
pre-merge
/
bandit
21s
Matrix: pre-merge / Scan Docker Images for CIS
Annotations
1 error and 14 warnings
|
pre-merge / trivy-critical-scan
Process completed with exit code 1.
|
|
pre-merge / trivy-config-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / trivy-filesystem-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / trivy-critical-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / secrets-gitleaks-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02, tj-actions/changed-files@ed68ef82c095e0d48ec87eccea555d944a631a4c. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / bandit
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065, tj-actions/changed-files@823fcebdb31bb35fdf2229d9f769b400309430d0. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (080137407410.dkr.ecr.us-west-2.amazonaws.com/edge-orch/cluster/connec...
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (ghcr.io/github/gh-aw-mcpg:latest)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (080137407410.dkr.ecr.us-west-2.amazonaws.com/edge-orch/cluster/connec...
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (ghcr.io/github/gh-aw-firewall/api-proxy:latest)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (080137407410.dkr.ecr.us-west-2.amazonaws.com/edge-orch/cluster/connec...
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (ghcr.io/github/github-mcp-server:latest)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (080137407410.dkr.ecr.us-west-2.amazonaws.com/edge-orch/cluster/connec...
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (ghcr.io/github/gh-aw-firewall/agent:latest)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
pre-merge / Scan Docker Images for CIS (ghcr.io/github/gh-aw-firewall/squid:latest)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
docker-images-cluster-connect-gateway
|
367 MB |
sha256:17401285295ce19b417a669822ce215c365d9cae8a796d992b9578a05de2d629
|
|
|
gitleaks-results-3rnqej-cluster-connect-gateway
Expired
|
175 Bytes |
sha256:fb2c0d88d9cc18c7fff28df8e284b68cbddfdae9c37ba6f57819f338bee3c4bb
|
|
|
trivy-cis-080137407410_dkr_ecr_us-west-2_amazonaws_com_edge-orch_cluster_connect-agent_1_2_9-dev-85a03e8a-pr-328-29492da7
|
1012 Bytes |
sha256:f9444cb0ea1608f322fd759ebb4700acfa382b20fbc514994f243f671dbcc5bb
|
|
|
trivy-cis-080137407410_dkr_ecr_us-west-2_amazonaws_com_edge-orch_cluster_connect-agent_latest-686b360e
|
974 Bytes |
sha256:2ab89059759130fa4edae53c0defeb5771bb12a480b368a77ba067a9171c3c35
|
|
|
trivy-cis-080137407410_dkr_ecr_us-west-2_amazonaws_com_edge-orch_cluster_connect-controller_1_2_9-dev-85a03e8a-pr-328-5d0d0c04
|
1022 Bytes |
sha256:77a68bf2c9d86cf05c672a0c8add60e3ca1f05020ee421f767f9afdf627820d9
|
|
|
trivy-cis-080137407410_dkr_ecr_us-west-2_amazonaws_com_edge-orch_cluster_connect-gateway_1_2_9-dev-85a03e8a-pr-328-e00d17b5
|
1016 Bytes |
sha256:4a613a5da7cff1c6d53a3e075f18d697b71841944b26d4406df91bd495fddda4
|
|
|
trivy-cis-ghcr_io_github_gh-aw-firewall_agent_latest-544a0bfb
|
893 Bytes |
sha256:3cd4d7dd64aecb52ad1d7c6fe24f12b9ae37dbf0e037446bc9e940a348ffbf41
|
|
|
trivy-cis-ghcr_io_github_gh-aw-firewall_api-proxy_latest-3fc91a9c
|
900 Bytes |
sha256:52f8302b3e0f1abee09cfcee53966f01ff4f08fc806e33306e7869e65c91c9e0
|
|
|
trivy-cis-ghcr_io_github_gh-aw-firewall_squid_latest-0958897f
|
892 Bytes |
sha256:99e69f1101f10bdcabe34441f34cb5e97bfb228b9070f11824092d5a54925428
|
|
|
trivy-cis-ghcr_io_github_gh-aw-mcpg_latest-2d7315bf
|
873 Bytes |
sha256:98fc0234e2ada8832a12ce3e65f9b94a4e0118788b9061961d1e8ce2f7e522bd
|
|
|
trivy-cis-ghcr_io_github_github-mcp-server_latest-83a5cde5
|
887 Bytes |
sha256:b4307680d519c9ee9b0d388a11f6c6ccc6a144b7b0a363210f81c8d5bba086c4
|
|
|
trivy-config-scan-cluster-connect-gateway
|
1.15 KB |
sha256:d1ee0c60f6efdc71f80fac776fcf082138b171c5f8c47c7f8c8624c6a718a5b8
|
|
|
trivy-fs-scan-report-cluster-connect-gateway
|
1.3 KB |
sha256:c3637422d1b7a7a5b943edba3d1941f2dcf6d5490a6453ac971d525558de0c1c
|
|
|
trivy-image-vuln-080137407410.dkr.ecr.us-west-2.amazonaws.com_edge-orch_cluster_connect-agent_1.2.9-dev-85a03e8a-pr-328
|
878 Bytes |
sha256:a862a675dba1b7894c4f125b682523c7ab63b157521d4c66c50da671ce68ee6f
|
|
|
trivy-image-vuln-080137407410.dkr.ecr.us-west-2.amazonaws.com_edge-orch_cluster_connect-agent_latest
|
841 Bytes |
sha256:73b0010676506cd051556f7082369de6a7f8715c8c1b11a75974a089cb9611b2
|
|
|
trivy-image-vuln-080137407410.dkr.ecr.us-west-2.amazonaws.com_edge-orch_cluster_connect-controller_1.2.9-dev-85a03e8a-pr-328
|
1.65 KB |
sha256:4c72e61f8095355eb1d2e5517883847d0752611bcce65bbf9a7e569d84faf22a
|
|
|
trivy-image-vuln-080137407410.dkr.ecr.us-west-2.amazonaws.com_edge-orch_cluster_connect-gateway_1.2.9-dev-85a03e8a-pr-328
|
875 Bytes |
sha256:b30d101258e75b210b20be29d0b1882043e1cd4e11823264425294dfce8f2944
|
|
|
trivy-image-vuln-ghcr.io_github_gh-aw-firewall_agent_latest
|
6.36 KB |
sha256:2ca287686fe25f802bd39e0321093fc633a692e827a245ad3987acb6efed1d3d
|
|
|
trivy-image-vuln-ghcr.io_github_gh-aw-firewall_api-proxy_latest
|
8.76 KB |
sha256:3e8ffacd2e3d401312e81ba00a5c0d604ba64646ddd59edb2a8869ce7739e174
|
|
|
trivy-image-vuln-ghcr.io_github_gh-aw-firewall_squid_latest
|
10.4 KB |
sha256:94028f4c4152952aedaf522f3d1b3d6533bc1dfc8d731bdc36b8191a2963ecaa
|
|
|
trivy-image-vuln-ghcr.io_github_gh-aw-mcpg_latest
|
8.48 KB |
sha256:aa2b46046c263aa7d4ae9b7fe2a025902dd46d4c381f6b97c95a5f6f4a6b8815
|
|
|
trivy-image-vuln-ghcr.io_github_github-mcp-server_latest
|
8.79 KB |
sha256:64179a130b01e87a3c18024de9468410e5a82de579dded149cd25f549ad9f266
|
|
|
zizmor-scan-report-cluster-connect-gateway
|
244 Bytes |
sha256:8f4e28e6f51c04959d720b6e25b678430160bfd73fb543e1979c8c7fa44f8854
|
|