Advanced CodeQL Security Analysis #154
morningstarxcdcodecodeql-advanced.yml
on: schedule
Matrix: CodeQL Security Analysis
Advanced Dependency Security
6m 56s
Security Compliance Validation
7s
AI/ML Security Analysis
0s
Annotations
13 errors and 3 warnings
|
CodeQL Security Analysis (python)
Aborting upload: only one run of the codeql/analyze or codeql/upload-sarif actions is allowed per job per tool/category. The easiest fix is to specify a unique value for the `category` input. If .runs[].automationDetails.id is specified in the sarif file, that will take precedence over your configured `category`. Category: (/language:python/) Tool: (CodeQL)
|
|
CodeQL Security Analysis (python)
Code Scanning could not process the submitted SARIF file:
CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled
|
|
CodeQL Security Analysis (go)
Aborting upload: only one run of the codeql/analyze or codeql/upload-sarif actions is allowed per job per tool/category. The easiest fix is to specify a unique value for the `category` input. If .runs[].automationDetails.id is specified in the sarif file, that will take precedence over your configured `category`. Category: (/language:go/) Tool: (CodeQL)
|
|
CodeQL Security Analysis (go)
Code Scanning could not process the submitted SARIF file:
CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled
|
|
Advanced Dependency Security
Process completed with exit code 1.
|
|
Advanced Dependency Security:
vendor/golang.org/x/net/http2/config_go124.go#L7
file requires newer Go version go1.24 (application built with go1.23)
|
|
Advanced Dependency Security:
vendor/golang.org/x/sys/unix/vgetrandom_linux.go#L7
file requires newer Go version go1.24 (application built with go1.23)
|
|
Advanced Dependency Security:
vendor/github.com/ugorji/go/codec/goversion_swissmap_unsafe.go#L6
file requires newer Go version go1.24 (application built with go1.23)
|
|
CodeQL Security Analysis (rust)
Aborting upload: only one run of the codeql/analyze or codeql/upload-sarif actions is allowed per job per tool/category. The easiest fix is to specify a unique value for the `category` input. If .runs[].automationDetails.id is specified in the sarif file, that will take precedence over your configured `category`. Category: (/language:rust/) Tool: (CodeQL)
|
|
CodeQL Security Analysis (rust)
Code Scanning could not process the submitted SARIF file:
CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled
|
|
CodeQL Security Analysis (javascript)
The job has exceeded the maximum execution time of 6h0m0s
|
|
CodeQL Security Analysis (javascript)
No SARIF files found to upload in "../results/".
|
|
CodeQL Security Analysis (javascript)
The operation was canceled.
|
|
Advanced Dependency Security
No files were found with the provided path: cargo-audit-report.json. No artifacts will be uploaded.
|
|
CodeQL Security Analysis (rust)
Cache not found for keys: v0-rust-Linux-rust-46e6f74ab28ccd609d864cf1d161e836596af986f1ff381062ffe261c27eb369-analyze-Linux-x64-5b05f00c-d1da57a6, v0-rust-Linux-rust-46e6f74ab28ccd609d864cf1d161e836596af986f1ff381062ffe261c27eb369-analyze-Linux-x64-5b05f00c
|
|
CodeQL Security Analysis (javascript)
Failed to upload a SARIF file for the unsuccessful execution. Code scanning status information for the repository may be out of date as a result. Processing errors: CodeQL analyses from advanced configurations cannot be processed when the default setup is enabled
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
compliance-report
Expired
|
299 Bytes |
sha256:485934e3b1c4f9eef9c8fbd14865f581aaac31ff978991e10531b05910a8fb9b
|
|