fix: code scanning alert no. 174: Log Injection #1137
yacosta738dev-commit-stage.yml
on: pull_request
Validation 👀
1m 33s
🔮 Static analysis and 🔒Security Checks
4m 15s
Annotations
5 warnings and 5 notices
|
🔮 Static analysis and 🔒Security Checks
Cache save failed.
|
|
🔮 Static analysis and 🔒Security Checks
Failed to generate-and-submit dependency graph. Will continue.
HttpError: Dependency submission failed for dependency-graph-reports/commit_stage_-static-analysis-security-1.json.
Resource not accessible by integration
Please ensure that the 'contents: write' permission is available for the workflow job.
Note that this permission is never available for a 'pull_request' trigger from a repository fork.
|
|
Build and Test 🧪
Failed to generate-and-submit dependency graph. Will continue.
HttpError: Dependency submission failed for dependency-graph-reports/commit_stage_-build.json.
Resource not accessible by integration
Please ensure that the 'contents: write' permission is available for the workflow job.
Note that this permission is never available for a 'pull_request' trigger from a repository fork.
|
|
Build and Test 🧪
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Build and Test 🧪
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
Code Coverage 📊
Submitted dependency-graph-reports/commit_stage_-code-coverage-1.json: The snapshot was accepted, but it is not for the default branch. It will not update dependency results for the repository.
|
|
Code Coverage 📊
Submitted dependency-graph-reports/commit_stage_-code-coverage.json: The snapshot was accepted, but it is not for the default branch. It will not update dependency results for the repository.
|
|
Package and Publish 📦
Submitted dependency-graph-reports/commit_stage_-package-1.json: The snapshot was accepted, but it is not for the default branch. It will not update dependency results for the repository.
|
|
Package and Publish 📦
Submitted dependency-graph-reports/commit_stage_-package-2.json: The snapshot was accepted, but it is not for the default branch. It will not update dependency results for the repository.
|
|
Package and Publish 📦
Submitted dependency-graph-reports/commit_stage_-package.json: The snapshot was accepted, but it is not for the default branch. It will not update dependency results for the repository.
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
dependency-graph_commit_stage_-build.json
|
18.9 KB |
|
|
dependency-graph_commit_stage_-static-analysis-security-1.json
|
6.77 KB |
|
|
dependency-graph_commit_stage_-static-analysis-security-2.json
|
6.64 KB |
|
|
dependency-graph_commit_stage_-static-analysis-security.json
|
5.38 KB |
|
|
owasp-reports
|
95.7 KB |
|
|
static-report
Expired
|
241 Bytes |
|