[StepSecurity] Apply security best practices (#63) #4
security.yml
on: push
Scorecard analysis
45s
Matrix: CodeQL analysis
Annotations
5 warnings
Scorecard analysis
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@v2. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
CodeQL analysis (javascript)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@v2. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
CodeQL analysis (javascript)
1 issue was detected with this workflow: CodeQL language 'javascript' is referenced by more than one entry in the 'language' matrix parameter for job 'codeql'. This may result in duplicate alerts. Please edit the 'language' matrix parameter to keep only one of the following: 'javascript', 'typescript'.
|
CodeQL analysis (typescript)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: step-security/harden-runner@v2. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
CodeQL analysis (typescript)
1 issue was detected with this workflow: CodeQL language 'javascript' is referenced by more than one entry in the 'language' matrix parameter for job 'codeql'. This may result in duplicate alerts. Please edit the 'language' matrix parameter to keep only one of the following: 'javascript', 'typescript'.
|
Artifacts
Produced during runtime
Name | Size | |
---|---|---|
SARIF file
Expired
|
18.9 KB |
|