Skip to content

Bump step-security/harden-runner from 1.5.0 to 2.6.1 #638

Bump step-security/harden-runner from 1.5.0 to 2.6.1

Bump step-security/harden-runner from 1.5.0 to 2.6.1 #638

Triggered via pull request November 17, 2023 14:15
Status Failure
Total duration 48m 49s
Artifacts 1

analysis.yml

on: pull_request
Scorecards  /  Security Scorecards
59s
Scorecards / Security Scorecards
Sonatype Nancy  /  Sonatype Nancy
28s
Sonatype Nancy / Sonatype Nancy
Dependency Review  /  Scan dependencies for license compliance
25s
Dependency Review / Scan dependencies for license compliance
Trivy  /  Filesystem
46m 55s
Trivy / Filesystem
Trivy  /  Container
0s
Trivy / Container
FOSSA  /  Find license compliance and security issues
FOSSA / Find license compliance and security issues
Semgrep Scan  /  semgrep
Semgrep Scan / semgrep
Matrix: CodeQL
Fit to window
Zoom out
Zoom in

Annotations

4 errors and 3 warnings
Scorecards / Security Scorecards
StepSecurity Harden Runner: Reverting agent since allowed endpoint *.blob.core.windows.net could not be resolved
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain actions-results-receiver-production.githubapp.com. was blocked. This domain is not in the list of allowed-endpoints.
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
Trivy / Filesystem
The hosted runner: GitHub Actions 1 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
Dependency Review / Scan dependencies for license compliance
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
CodeQL (go) / CodeQL Analysis
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby

Artifacts

Produced during runtime
Name Size
SARIF file Expired
46.5 KB