Bump github/codeql-action from 4.32.6 to 4.34.1 #101
dependabot[bot]ci.yml
on: pull_request
Matrix: Go Build & Test
Python Test & Lint
32s
Security Regression Tests
45s
Test Count Drift Check
41s
Dependency Vulnerability Audit
51s
Documentation Validation
4s
Shell Script Lint
7s
Validate YAML configs
7s
Verify action & container pins
7s
Supply Chain & SBOM Verification
32s
Release Branch Hardened Gate
0s
Annotations
8 warnings
|
Python Test & Lint
services/quarantine/quarantine/watcher.py:178: [MEDIUM] Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.
|
|
Python Test & Lint
services/quarantine/quarantine/pipeline.py:1437: [MEDIUM] Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.
|
|
Python Test & Lint
services/agent/agent/sandbox.py:403: [MEDIUM] Probable insecure usage of temp file/directory.
|
|
Python Test & Lint
services/agent/agent/app.py:555: [MEDIUM] Chmod setting a permissive mask 0o660 on file (sock_path).
|
|
Supply Chain & SBOM Verification
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
|
|
Test Count Drift Check
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
|
|
Security Regression Tests
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
|
|
Dependency Vulnerability Audit
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
|