Skip to content
Build and Publish Master Container

Merge pull request #2193 from OWASP/renovate/major-github-actions #67

Sign in to view logs

Merge pull request #2193 from OWASP/renovate/major-github-actions

Merge pull request #2193 from OWASP/renovate/major-github-actions #67

Triggered via push August 23, 2025 05:58
@commjoencommjoen
pushed c414f6b
master
Status Success
Total duration 8m 5s
Artifacts 1

master-container-publish.yml

on: push
build-and-publish
8m 0s
build-and-publish
Fit to window
Zoom out
Zoom in

Annotations

5 warnings
Sensitive data should not be used in the ARG or ENV commands: Dockerfile#L18
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "AZURE_KEY_VAULT_ENABLED") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
Sensitive data should not be used in the ARG or ENV commands: Dockerfile#L17
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "DOCKER_ENV_PASSWORD") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
Variables should be defined before their use: Dockerfile#L16
UndefinedVar: Usage of undefined variable '$argBasedVersion' More info: https://docs.docker.com/go/dockerfile/rule/undefined-var/
Sensitive data should not be used in the ARG or ENV commands: Dockerfile#L15
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "ARG_BASED_PASSWORD") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals: Dockerfile#L71
JSONArgsRecommended: JSON arguments recommended for CMD to prevent unintended behavior related to OS signals More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/

Artifacts

Produced during runtime
Name Size Digest
OWASP~wrongsecrets~XI08AI.dockerbuild Expired
159 KB
sha256:cdd8b90948b0bad4d90eadc35ceab119ac0b29c1a16f7faa65aebb73fc25a0fb