Bump docker/metadata-action from 4.3.0 to 5.5.0 #660
Triggered via pull request
January 5, 2024 14:40
dependabot[bot]
Status
Failure
Total duration
8h 33m 49s
Artifacts
1
analysis.yml
on: pull_request
Scorecards
/
Security Scorecards
55s
Sonatype Nancy
/
Sonatype Nancy
18s
Dependency Review
/
Scan dependencies for license compliance
20s
Trivy
/
Filesystem
48m 55s
Trivy
/
Container
0s
FOSSA
/
Find license compliance and security issues
Semgrep Scan
/
semgrep
Matrix: CodeQL
Annotations
4 errors and 3 warnings
|
Dependency Review / Scan dependencies for license compliance
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
|
|
Scorecards / Security Scorecards
StepSecurity Harden Runner: Reverting agent since allowed endpoint *.blob.core.windows.net could not be resolved
|
|
CodeQL (go) / CodeQL Analysis
StepSecurity Harden Runner: DNS resolution for domain pipelinesghubeus2.actions.githubusercontent.com. was blocked. This domain is not in the list of allowed-endpoints.
|
|
Trivy / Filesystem
The hosted runner: GitHub Actions 5 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
|
|
Dependency Review / Scan dependencies for license compliance
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
|
|
CodeQL (go) / CodeQL Analysis
Failed to save: reserveCache failed: connect ECONNREFUSED 54.185.253.63:443
|
|
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
SARIF file
Expired
|
46.6 KB |
|