Eli 546/create hashing secrets #2509
Karthikeyannhscicd-1-pull-request.yaml
on: pull_request
Set CI/CD metadata
6s
Commit stage
/
Scan secrets
12s
Commit stage
/
Check file format
5s
Commit stage
/
Check Markdown format
3s
Commit stage
/
Check English usage
6s
Commit stage
/
Lint Terraform
6s
Commit stage
/
Checkov Terraform
23s
Commit stage
/
Count lines of code
9s
Commit stage
/
Scan dependencies
35s
Commit stage
/
OWASP Dependency Scan
28s
Acceptance stage
/
Accessibility test
Acceptance stage
/
Contract test
Acceptance stage
/
Integration test
Acceptance stage
/
Load test
Acceptance stage
/
Security test
Acceptance stage
/
UI performance test
Acceptance stage
/
UI test
Acceptance stage
/
Environment tear down
Annotations
3 errors and 1 warning
|
Commit stage / Checkov Terraform
CKV2_AWS_57: "Ensure Secrets Manager secrets should have automatic rotation enabled"
|
|
Commit stage / Checkov Terraform
CKV_AWS_290: "Ensure IAM policies does not allow write access without constraints"
|
|
Commit stage / Checkov Terraform
CKV_AWS_355: "Ensure no IAM policies documents allow "*" as a statement's resource for restrictable actions"
|
|
Commit stage / OWASP Dependency Scan
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
lines-of-code-report-.json.zip
Expired
|
827 Bytes |
sha256:0d0286c92120d8bae4e959a641b25916aaa3cfd065f619e52985ce8f9a6cba81
|
|
|
sbom-repository-report.json.zip
Expired
|
57.2 KB |
sha256:c8b4211d16a213d3f9105cc34c05747de5e9d1711b85c64be7b2ff22b9e69037
|
|
|
vulnerabilities-repository-report-.json.zip
Expired
|
2.27 KB |
sha256:781b36d3f2cd393b317be03b1573a384ac1c635635b0b0cafb0cd97f9ac5ca4d
|
|