Skip to content
Back to pull request #33

[Snyk] Security upgrade nginx from alpine to 1.25.4-alpine3.18 #114

Sign in to view logs

[Snyk] Security upgrade nginx from alpine to 1.25.4-alpine3.18

[Snyk] Security upgrade nginx from alpine to 1.25.4-alpine3.18 #114

Triggered via pull request March 18, 2024 01:34
@Lingom-KSRLingom-KSR
opened #33
snyk-fix-9ea696f22c85adce375391b67222ebe4
Status Failure
Total duration 27s
Artifacts

ShiftLeft.yaml

on: pull_request
scanning
18s
scanning
Fit to window
Zoom out
Zoom in

Annotations

1 error and 4 warnings
scanning
The template is not valid. .github/workflows/ShiftLeft.yaml (Line: 29, Col: 12): Unexpected character encountered while parsing value: <. Path '', line 0, position 0.
No non-root USER specified in Dockerfile configuration: client/Dockerfile#L1
Vulnerability: PrivilegeEscalation [Severity: High]
scanning
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v2. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scanning
The following actions uses node12 which is deprecated and will be forced to run on node16: actions/checkout@v2. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
scanning
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/