feat: v0.3.11 — cenzontle agent orchestration + SOTA architecture #14
osvaloisdevsecops.yml
on: pull_request
Dependency Audit (cargo-audit)
5m 38s
License & Ban Check (cargo-deny)
40s
Secret Scanning (gitleaks)
7s
Clippy Security Lints
9s
Trivy Vulnerability Scan
41s
Weekly SBOM
0s
Annotations
5 errors and 6 warnings
|
Clippy Security Lints
Process completed with exit code 101.
|
|
Secret Scanning (gitleaks)
🛑 missing gitleaks license. Go grab one at gitleaks.io and store it as a GitHub Secret named GITLEAKS_LICENSE. For more info about the recent breaking update, see [here](https://github.com/gitleaks/gitleaks-action#-announcement).
|
|
Trivy Vulnerability Scan
Path does not exist: trivy-results.sarif
|
|
Trivy Vulnerability Scan
Process completed with exit code 1.
|
|
Dependency Audit (cargo-audit)
Unable to publish audit check! Reason: HttpError: Resource not accessible by integration - https://docs.github.com/rest/checks/runs#create-a-check-run
|
|
Trivy Vulnerability Scan
Failed to gather information for telemetry: Resource not accessible by integration - https://docs.github.com/rest/actions/workflow-runs#get-a-workflow-run. Will skip sending status report.
|
|
Trivy Vulnerability Scan
Failed to gather information for telemetry: Resource not accessible by integration - https://docs.github.com/rest/actions/workflow-runs#get-a-workflow-run. Will skip sending status report.
|
|
Trivy Vulnerability Scan
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
|
Dependency Audit (cargo-audit)
GitHub Actions are not allowed to use Check API, when executed for a forked repos. See https://github.com/actions-rs/clippy-check/issues/2 for details.
|
|
Dependency Audit (cargo-audit)
It seems that this Action is executed from the forked repository.
|
|
Dependency Audit (cargo-audit)
7 warnings found!
|