Skip to content
Security scan

Security scan #66

Sign in to view logs

Security scan

Security scan #66

Triggered via schedule April 15, 2026 04:35
@rajeshgangireddyrajeshgangireddy
fade7a5
main
Status Failure
Total duration 1h 9m 29s
Artifacts 12

security-scan.yml

on: schedule
zizmor-scan
15s
zizmor-scan
bandit-scan
25s
bandit-scan
semgrep-scan
1m 47s
semgrep-scan
trivy-scan
25s
trivy-scan
Matrix: dast-scan
Matrix: trivy-docker-image-scan
Fit to window
Zoom out
Zoom in

Annotations

3 errors and 4 warnings
dast-scan (xpu)
Process completed with exit code 1.
dast-scan (xpu)
Process completed with exit code 1.
dast-scan (xpu)
Process completed with exit code 1.
trivy-docker-image-scan (cpu)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
trivy-docker-image-scan (cuda)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
trivy-docker-image-scan (xpu)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
dast-scan (xpu)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/upload-artifact@v4, extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Artifacts

Produced during runtime
Name Size Digest
bandit-results
10.1 KB
sha256:b67015a4e37d4b1197134775ac26778e10f060a6a7a5608b0899b541df0ea47c
container-logs
366 Bytes
sha256:231d231d2ffba4cb1680eeb6b907b73b2a3eb0db1c6e3a78ddb27b04e6ed5052
schema-coverage-report
41.3 KB
sha256:12dfbe9c6f41d64bbd6cb4e91db0895ea25634d18ee0432f2cf0521eb2301ee5
schemathesis-report-xpu
19 KB
sha256:c06400ad8349f28d9956ee4f7f9c141c3427ad3a425ecc40db49116df11170dd
semgrep-results
219 KB
sha256:d72203aafa8806356239d124c859174c5c59da6a47bc6f49753c94fe1a7020f3
trivy-results
3.48 KB
sha256:64ce739649a8ab78386dc3068ce3448ef2027cd43e4c1250d8df728c4102a64d
trivy-results-docker-cpu
4.97 KB
sha256:4539e95027e01f59117f99d883b014a74d764fcb1f578e18852c98e64589843d
trivy-results-docker-cuda
5.28 KB
sha256:1f7dd11319bac5ec76bf6101c74849a1930dedd50091c1e394183de4f017bc30
trivy-results-docker-xpu
5.32 KB
sha256:e03bcbf8db1f8546ef2a5f9e5f198e7495a56e002e2a84ece00cf8f4eb67e8c0
zapapi
63.1 KB
sha256:57e16c4a6af91a8c5c8f89d6324b4a7233f14ccd00aba01e6f523cf0b0ab949d
zapfull
32.8 KB
sha256:ae0f0c81bf4b9c0b26d30dd0b1081bab4b941e01ccffc68a5880491941b8ba18
zizmor-results
611 Bytes
sha256:c108bdbcd5e8b6f977d9490e76f7c237587ebd0371874e651e3cdaa3e0c17381