Skip to content
Security scan

Security scan #68

Sign in to view logs

Security scan

Security scan #68

Triggered via schedule April 16, 2026 04:41
@rajeshgangireddyrajeshgangireddy
fc8551a
main
Status Failure
Total duration 18m 11s
Artifacts 12

security-scan.yml

on: schedule
zizmor-scan
15s
zizmor-scan
bandit-scan
28s
bandit-scan
semgrep-scan
1m 38s
semgrep-scan
trivy-scan
26s
trivy-scan
Matrix: dast-scan
Matrix: trivy-docker-image-scan
Fit to window
Zoom out
Zoom in

Annotations

3 errors and 4 warnings
dast-scan (xpu)
Process completed with exit code 1.
dast-scan (xpu)
Process completed with exit code 1.
dast-scan (xpu)
Process completed with exit code 1.
trivy-docker-image-scan (cpu)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
trivy-docker-image-scan (xpu)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
trivy-docker-image-scan (cuda)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
dast-scan (xpu)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/upload-artifact@v4, extractions/setup-crate@4993624604c307fbca528d28a3c8b60fa5ecc859. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/

Artifacts

Produced during runtime
Name Size Digest
bandit-results
10.1 KB
sha256:baa820fbebb67a4dab4e934ae90b4c8faba152816dc0d7e61176bcc98d904bf8
container-logs
367 Bytes
sha256:2f4fd85b2f7784c3cbfcb02012f293c136f687b78a985031e8202fb523c7be0c
schema-coverage-report
40.6 KB
sha256:eaf085c6b4aa1b56f5e2370f46874b4a741ec45dd0a574d36516777fa2ed3453
schemathesis-report-xpu
7.16 KB
sha256:f0f794e3f295b9b83accee7370cb08c3ab9ef1165538e1231097261b9d4f502d
semgrep-results
219 KB
sha256:bd774b4a6f4a840203ba992b27ec7fd8a6dc0f49b14e0c8393448c47358dcfb7
trivy-results
3.48 KB
sha256:69a1017094a458ae86f1068e25973e87e740e56e93f6d0ed6d0b05cb344db721
trivy-results-docker-cpu
4.97 KB
sha256:00a8477dd36104cbb12383c48eca7f0781b4030a87db3d597681db98e2b12480
trivy-results-docker-cuda
5.28 KB
sha256:a7c9e5dff5e9b09f893cad2fac0953e3c1ea7a897370ff196829cc1114a21526
trivy-results-docker-xpu
5.32 KB
sha256:c143dd6b0dca108146def9db4479ce359b1dd9078a6c72a5ad1f2365d1558e70
zapapi
63.2 KB
sha256:bc5458c0a23df2b04dda8853463c7c54380c4bb2845acbfe5baca51aeb66b2b5
zapfull
32.8 KB
sha256:3d55db27937fc4827ac62540cfa9c5a87c2ce0a09deb9223412d06a0be106957
zizmor-results
611 Bytes
sha256:6cc07aec64ced2fa9af5ff1d254640a816e6014045287cbc0156730bfe000bcc