1. CI - Pull Request

CCM-13343: Trivy Package and Library Scans #2151

Sign in to view logs

Triggered via push December 18, 2025 15:19

jamesthompson26-nhs

feature/CCM-13343_Trivy_Package_and_Library_Scans

Status Failure

Total duration 50s

Artifacts 3

cicd-1-pull-request.yaml

on: push

Set CI/CD metadata

Commit stage / Scan secrets

Commit stage / Check file format

Commit stage / Check Markdown format

Commit stage / Check English usage

Commit stage / Check TODO usage

Commit stage / Trivy Package Scan

Commit stage / Count lines of code

Commit stage / Scan dependencies

Commit stage / Check for changes to event schema package compared to main branch

Commit stage / Detect Terraform Changes

Commit stage / Check event schema version has been updated

Commit stage / Check for event schemas package version change

Commit stage / Run terraform-docs

Commit stage / Lint Terraform

Commit stage / Trivy IaC Scan

Test stage / Check generated dependencies

Test stage / Linting

Test stage / Pact tests

Test stage / Typecheck

Test stage / Unit tests

Test stage / Perform static analysis

Test stage / Test coverage

Build stage / Build Docs

Build stage / Build SDKs

Build stage / Create Dynamic Environment

Build stage / Build proxies

Acceptance stage / Contract test

Publish stage / Publish packages

Publish stage / Publish npm packages to npm.pkg.github.com

Publish stage / Publish nuget packages to nuget.pkg.github.com

Publish stage / Success notification

Annotations

1 error

Commit stage / Trivy Package Scan

Process completed with exit code 1.

Artifacts

Produced during runtime

Name	Size	Digest
lines-of-code-report.json.zip	1003 Bytes	`sha256:186002421b4a7e519ae07c047c091f814ff80e284c39240c3db396b541f25e29`
sbom-repository-report.json.zip	237 KB	`sha256:cb4d78fb26c428e394b6a8a9175c2b56a6cfa0f4f0979e97b000a2ea696a43ba`
vulnerabilities-repository-report.json.zip	2.27 KB	`sha256:3108ca9cd609e5b04794c6775c94b332fda253ea27ac2c3ab4a71e656481b342`