Add research-vuln-scan workflow #17
robert-schardtAnnotations
1 error and 6 warnings
|
Docker Scout
Code Scanning could not process the submitted SARIF file:
rejecting SARIF, as there are more related locations per result than allowed (2243 > 1000)
|
|
Grype
The following actions use a deprecated Node.js version and will be forced to run on node20: anchore/scan-action@d5aa5b6cb9414b0c7771438046ff5bcfa2854ed7. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Grype
Failed minimum severity level. Found vulnerabilities with level 'low' or higher
|
|
Grype
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
|
|
Trivy
Docker build failed with exit code 1, back off 9.84 seconds before retry.
|
|
Docker Scout
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Docker Scout
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|