feat: Add Security Reviewer Agent with comprehensive vulnerability as… #29
emmanuelknafocicd.yml
on: push
Build and Publish Container Image
/
set-version
7s
Deploy Azure Infrastructure
1m 41s
Build and Publish Container Image
/
...
/
scan-image
1m 11s
Build and Deploy to Azure Web App
2m 20s
Build and Publish Container Image
/
...
/
publish-image
1m 21s
Annotations
10 warnings and 3 notices
|
Build and Publish Container Image / scan-image / scan-image
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
|
Build and Publish Container Image / scan-image / scan-image
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
|
|
Build and Deploy to Azure Web App
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Possible null reference assignment.
|
|
Build and Publish Container Image / publish-image / publish-image
Snapshot successfully created at 2026-01-30T13:31:59.287Z
|
|
Build and Publish Container Image / publish-image / publish-image
{
"manifests": {},
"version": 0,
"job": {
"correlator": "publish-image",
"id": "21517465176"
},
"sha": "ade816698e1bac072cad633b36a83a0c03a9000d",
"ref": "refs/heads/main",
"scanned": "2026-01-30T13:31:58.982Z",
"detector": {
"name": "spdx-to-dependency-graph-action",
"version": "0.1.1",
"url": "https://github.com/advanced-security/spdx-dependency-submission-action"
}
}
|
|
Build and Publish Container Image / publish-image / publish-image
Submitting snapshot...
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
devopsabcs-engineering~gh-advsec-devsecops~8C41W3.dockerbuild
|
73.7 KB |
sha256:cafd457b8fd04b7f49c658aec38e9f21d5d9829bab3351d6adcb664ea8b4c35c
|
|
|
devopsabcs-engineering~gh-advsec-devsecops~LVVOCV.dockerbuild
|
38.7 KB |
sha256:804a1c25670884e54bc18c87251b06dcbe81e5a2b15e8ca4c0e97d18e338fcc4
|
|
|
sarif
|
7.01 KB |
sha256:dad97326ef462a50d9d3d630eecb7aea244a85ced533fa415e5a440969a49db9
|
|