ci(grype): fail-build-pr-only (#505) #894
yxtayscans.yml
on: push
checkov
33s
clair
36s
devskim
39s
dustilock
23s
gitleaks
20s
grype
46s
grype-container
59s
kics
40s
megalinter
2m 29s
msdo
43s
osv-scan-push
/
osv-scan
32s
syft
51s
trivy-fs
33s
trivy-image
1m 19s
trufflehog
11s
trunk
20s
vorpal
10s
osv-scan-pr
/
osv-scan
Annotations
5 warnings
|
[MEDIUM] Apt Get Install Pin Version Not Defined:
Dockerfile#L94
When installing a package, its pin version should be defined
|
|
[MEDIUM] Apt Get Install Pin Version Not Defined:
Dockerfile#L36
When installing a package, its pin version should be defined
|
|
[MEDIUM] Apt Get Install Pin Version Not Defined:
Dockerfile#L46
When installing a package, its pin version should be defined
|
|
[MEDIUM] Apt Get Install Pin Version Not Defined:
Dockerfile#L94
When installing a package, its pin version should be defined
|
|
grype-container
Failed minimum severity level. Found vulnerabilities with level 'high' or higher
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
SARIF file
Expired
|
588 Bytes |
sha256:10f1edfa716de674fc8807ae532a58048620b731b6a10bfd8a1d2163b98ca440
|
|
|
gitleaks-results.sarif
Expired
|
6.64 KB |
sha256:02ddfcc8b9f11fcc84f1a2ece105408967a4dd9895b2d1f2c0efc7acf7f01f0a
|
|
|
megalinter-reports
Expired
|
633 KB |
sha256:7af7899402d0791cd94108f719116390d1dcf27f51478e85a086e3a8ec2c8888
|
|
|
python-example-app-syft.spdx.json
Expired
|
18.2 KB |
sha256:92416444d884257eeeb01371a27c49352bfcd49a0f49d5e6111c6ca1f58849ff
|
|
|
yxtay~python-example-app~25KBZ2.dockerbuild
Expired
|
19.6 KB |
sha256:6f3160cfffc27b5ca345085dc4255124c5184e041c7dae9c8872098409832c15
|
|
|
yxtay~python-example-app~Z3D1PZ.dockerbuild
Expired
|
19.5 KB |
sha256:c447586ecaa84221e572a53f9f109690e890e6819f9fea90fee992898050a5ee
|
|
|
yxtay~python-example-app~ZMORLV.dockerbuild
Expired
|
19.5 KB |
sha256:18f4027eef04469c43b3d4480aa589229645701c82ac2798f13778171bd737d2
|
|