feat: Add IaC Security Agent for scanning Terraform, Bicep, and Kuber… #30
emmanuelknafocicd.yml
on: push
Build and Publish Container Image
/
set-version
6s
Deploy Azure Infrastructure
1m 26s
Build and Publish Container Image
/
...
/
scan-image
1m 20s
Build and Deploy to Azure Web App
3m 43s
Build and Publish Container Image
/
...
/
publish-image
1m 8s
Annotations
10 warnings and 3 notices
|
Build and Publish Container Image / scan-image / scan-image
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
|
Build and Publish Container Image / scan-image / scan-image
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
|
|
Build and Deploy to Azure Web App
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Possible null reference assignment.
|
|
Build and Publish Container Image / publish-image / publish-image
Snapshot successfully created at 2026-02-03T17:04:32.781Z
|
|
Build and Publish Container Image / publish-image / publish-image
{
"manifests": {},
"version": 0,
"job": {
"correlator": "publish-image",
"id": "21639647114"
},
"sha": "c90932adb934c3ddba125e8e1ee9747ade38d4d1",
"ref": "refs/heads/main",
"scanned": "2026-02-03T17:04:32.533Z",
"detector": {
"name": "spdx-to-dependency-graph-action",
"version": "0.1.1",
"url": "https://github.com/advanced-security/spdx-dependency-submission-action"
}
}
|
|
Build and Publish Container Image / publish-image / publish-image
Submitting snapshot...
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
devopsabcs-engineering~gh-advsec-devsecops~1LCRN7.dockerbuild
|
78.1 KB |
sha256:25e1b7a56bae5d5437be619b6833646f2e98cfbce2cd86a9a450879505120a20
|
|
|
devopsabcs-engineering~gh-advsec-devsecops~7G9PF5.dockerbuild
|
38.9 KB |
sha256:b355380a6a119e455599c3543f647f8fc1147011d8c11cd30b612cf94cf44e57
|
|
|
sarif
|
1.77 KB |
sha256:cf0c3f6faf7677f746e2cf839029351d76915ed05b745872b7d4dc91ac841bb9
|
|