Skip to content
Security Scanning 🕵️

Merge pull request #77 from OpenVoxProject/dependabot/github_actions/… #153

Sign in to view logs

Merge pull request #77 from OpenVoxProject/dependabot/github_actions/…

Merge pull request #77 from OpenVoxProject/dependabot/github_actions/… #153

Triggered via push September 5, 2025 13:18
@bastelfreakbastelfreak
pushed b744e21
main
Status Success
Total duration 3m 27s
Artifacts 2

security_scanning.yml

on: push
setup-matrix
5s
setup-matrix
Matrix: scan_ci_container
Fit to window
Zoom out
Zoom in

Annotations

4 warnings
Scan amd64 CI container
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
Sensitive data should not be used in the ARG or ENV commands: openvoxserver/Containerfile#L38
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "INTERMEDIATE_CA_KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/
Scan arm64 CI container
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
Sensitive data should not be used in the ARG or ENV commands: openvoxserver/Containerfile#L38
SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "INTERMEDIATE_CA_KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Artifacts

Produced during runtime
Name Size Digest
OpenVoxProject~container-openvoxserver~OIKLU8.dockerbuild
64.5 KB
sha256:c5b12af9e257f86e708bcf63e6823d37917df5657ee03e7cbf30526cb51a391c
OpenVoxProject~container-openvoxserver~R25DKK.dockerbuild
61.3 KB
sha256:e1bc169f652d55b483d8bc9857d76180715dfa73555c19a4fe53cc24ac0876c4