Skip to content
scans

ci: Upgrade trunk #1174

Sign in to view logs

ci: Upgrade trunk

ci: Upgrade trunk #1174

Triggered via pull request October 6, 2025 23:09
@yxtayyxtay
synchronize #651
trunk-io/update-trunk
Status Failure
Total duration 2m 39s
Artifacts 9

scans.yml

on: pull_request
checkov
30s
checkov
clair
34s
clair
devskim
30s
devskim
dustilock
24s
dustilock
gitleaks
13s
gitleaks
grype
36s
grype
grype-container
49s
grype-container
kics
37s
kics
megalinter
2m 25s
megalinter
msdo
36s
msdo
osv-scan-pr  /  osv-scan
33s
osv-scan-pr / osv-scan
syft
46s
syft
trivy-fs
25s
trivy-fs
trivy-image
56s
trivy-image
trufflehog
10s
trufflehog
trunk
50s
trunk
vorpal
11s
vorpal
osv-scan-push  /  osv-scan
osv-scan-push / osv-scan
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 4 warnings
grype-container
Failed minimum severity level. Found vulnerabilities with level 'high' or higher
trivy-image
Process completed with exit code 1.
[MEDIUM] Apt Get Install Pin Version Not Defined: Dockerfile#L94
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: Dockerfile#L36
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: Dockerfile#L46
When installing a package, its pin version should be defined
[MEDIUM] Apt Get Install Pin Version Not Defined: Dockerfile#L94
When installing a package, its pin version should be defined

Artifacts

Produced during runtime
Name Size Digest
SARIF file Expired
589 Bytes
sha256:ff15a78c59fae4c6f8655a6218a0634943efe1cb2b849b8a72f97bb42ec033d2
gitleaks-results.sarif Expired
6.64 KB
sha256:3b2feb77f896ec6a0dad1689a892405da428aa5c58671069774079aba922079a
megalinter-reports Expired
686 KB
sha256:d0cec86e09dbda8d228b6673904dd9c1694a2b34f5956cd4c3439456200453de
new-json-results Expired
241 Bytes
sha256:601e18143b9ec94a3f685e84dc191aaa7bf2b092c549ab4c1fdd2cee74692c97
old-json-results Expired
241 Bytes
sha256:8b961146f72bf893651ce12e837618b2e1a071ace20f3227dd8f3035ab698d0b
python-example-app-syft.spdx.json Expired
18.2 KB
sha256:a75ff13ea3a9f1976eb913051a5859191d8ec909e3cecbbe44ec5717527e1781
yxtay~python-example-app~KWMIP7.dockerbuild Expired
19.1 KB
sha256:1967338133e0e6f0477ea7b65639376688b6d61b1cc372b55b9d2c8a357a4027
yxtay~python-example-app~LE6JKE.dockerbuild Expired
18.8 KB
sha256:23a2f249eb4e701903746b4b07efde1fb2e4418571f057ad2a287f37e3bcb94e
yxtay~python-example-app~RNC1XY.dockerbuild Expired
18.5 KB
sha256:8688a881d5d07a51a8e35b31e389ad941f3d4b8835e008e9e5faea8a64068e07