New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

ci: sync workflows from central-workflows #196

Closed

vorsterk wants to merge 5 commits into dev from sync-workflows-update

Closed

ci: sync workflows from central-workflows #196

fix: Delete .github/workflows/linting.yaml

GitHub Advanced Security / Checkov (reported by Codacy) succeeded Jul 10, 2024 in 5s

12 new alerts

New alerts in code changed by this pull request

12 notes

See annotations below for details.

View all branch alerts.

Annotations

Check notice on line 1 in .github/workflows/conventional-commits.yml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 1 in .github/workflows/release.yml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 17 in .github/workflows/gpg-verify.yml

Code scanning / Checkov (reported by Codacy)

Suspicious use of curl with secrets Note

Suspicious use of curl with secrets

Check notice on line 17 in .github/workflows/gpg-verify.yml

Code scanning / Checkov (reported by Codacy)

Ensure run commands are not vulnerable to shell injection Note

Ensure run commands are not vulnerable to shell injection

Check notice on line 1 in .github/workflows/gpg-verify.yml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 22 in .github/workflows/terraform-security.yaml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 22 in .github/workflows/dco-check.yaml

Code scanning / Checkov (reported by Codacy)

Ensure run commands are not vulnerable to shell injection Note

Ensure run commands are not vulnerable to shell injection

Check notice on line 1 in .github/workflows/dco-check.yaml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 1 in .github/workflows/bench.yaml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 8 in .github/workflows/milestone.yaml

Code scanning / Checkov (reported by Codacy)

The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. Note

The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty.

Check notice on line 1 in .github/workflows/milestone.yaml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all

Check notice on line 1 in .github/workflows/node.js.yml

Code scanning / Checkov (reported by Codacy)

Ensure top-level permissions are not set to write-all Note

Ensure top-level permissions are not set to write-all