Skip to content
Pre-Merge CI Pipeline

fix: validate ISO prerequisites before expensive build operations #467

Sign in to view logs

fix: validate ISO prerequisites before expensive build operations

fix: validate ISO prerequisites before expensive build operations #467

Triggered via pull request April 22, 2026 10:57
@arodagearodage
synchronize #518
fix/iso-live-installer-validation
Status Success
Total duration 3m 25s
Artifacts 4

pre-merge.yml

on: pull_request
pre-merge  /  sanitize-project-folder
4s
pre-merge / sanitize-project-folder
pre-merge  /  license-compliance-check
0s
pre-merge / license-compliance-check
pre-merge  /  run-repo-pipelines
3m 8s
pre-merge / run-repo-pipelines
pre-merge  /  zizmor-scan
9s
pre-merge / zizmor-scan
pre-merge  /  secrets-gitleaks-scan
15s
pre-merge / secrets-gitleaks-scan
pre-merge  /  trivy-filesystem-scan
18s
pre-merge / trivy-filesystem-scan
pre-merge  /  trivy-critical-scan
20s
pre-merge / trivy-critical-scan
pre-merge  /  trivy-config-scan
9s
pre-merge / trivy-config-scan
pre-merge  /  bandit
13s
pre-merge / bandit
Matrix: pre-merge / Scan Docker Images for CIS
Fit to window
Zoom out
Zoom in

Annotations

4 warnings
pre-merge / zizmor-scan
No file matched to [/home/runner/work/image-composer-tool/image-composer-tool/**/*requirements*.txt,/home/runner/work/image-composer-tool/image-composer-tool/**/*requirements*.in,/home/runner/work/image-composer-tool/image-composer-tool/**/*constraints*.txt,/home/runner/work/image-composer-tool/image-composer-tool/**/*constraints*.in,/home/runner/work/image-composer-tool/image-composer-tool/**/pyproject.toml,/home/runner/work/image-composer-tool/image-composer-tool/**/uv.lock,/home/runner/work/image-composer-tool/image-composer-tool/**/*.py.lock]. The cache will never get invalidated. Make sure you have checked out the target repository and configured the cache-dependency-glob input correctly.
pre-merge / trivy-config-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
pre-merge / trivy-filesystem-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
pre-merge / trivy-critical-scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Artifacts

Produced during runtime
Name Size Digest
gitleaks-results-yy2tzh-image-composer-tool
175 Bytes
sha256:07eaf540e3a64c77f39f364405a07f2766b9ffbeb899b7fb61151ef6b62cef15
trivy-config-scan-image-composer-tool
496 Bytes
sha256:d60a6f83c067e6601df888a0919833b738ead8b7e55872279170d0adc8e6ac2c
trivy-fs-scan-report-image-composer-tool
1.29 KB
sha256:72916381db6deea6cfe62c48e7489150db76d7680f53f199b7d8e2cffae6d41e
zizmor-scan-report-image-composer-tool
594 Bytes
sha256:bce409c7ce10bf35c25c2de986427468ac4a5cce13d2ede05e35a596a56b96f2