Bump golang.org/x/sync from 0.7.0 to 0.8.0 #897
Triggered via pull request
August 5, 2024 14:27
dependabot[bot]
Status
Failure
Total duration
2h 59m 36s
Artifacts
1
analysis.yml
on: pull_request
Scorecards
/
Security Scorecards
3m 36s
Sonatype Nancy
/
Sonatype Nancy
5m 41s
Dependency Review
/
Scan dependencies for license compliance
2h 32m
Trivy
/
Filesystem
3m 32s
Trivy
/
Container
0s
FOSSA
/
Find license compliance and security issues
Semgrep Scan
/
semgrep
Matrix: CodeQL
Annotations
2 errors and 6 warnings
|
Scorecards / Security Scorecards
StepSecurity Harden Runner: Reverting agent since allowed endpoint *.blob.core.windows.net could not be resolved
|
|
Dependency Review / Scan dependencies for license compliance
The hosted runner: GitHub Actions 11 lost communication with the server. Anything in your workflow that terminates the runner process, starves it for CPU/Memory, or blocks its network access can cause this error.
|
|
Scorecards / Security Scorecards
The following actions uses Node.js version which is deprecated and will be forced to run on node20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce, github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Trivy / Filesystem
The following actions uses Node.js version which is deprecated and will be forced to run on node20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce, github/codeql-action/upload-sarif@c3b6fce4ee2ca25bc1066aa3bf73962fda0e8898. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
CodeQL (go) / CodeQL Analysis
The following actions uses Node.js version which is deprecated and will be forced to run on node20: step-security/harden-runner@1f99358870fe1c846a3ccba386cc2b2246836776, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab, github/codeql-action/init@f0a12816612c7306b485a22cb164feb43c6df818, github/codeql-action/autobuild@f0a12816612c7306b485a22cb164feb43c6df818, github/codeql-action/analyze@f0a12816612c7306b485a22cb164feb43c6df818. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
CodeQL (go) / CodeQL Analysis
The "paths"/"paths-ignore" fields of the config only have effect for JavaScript, Python, and Ruby
|
|
Sonatype Nancy / Sonatype Nancy
The following actions uses Node.js version which is deprecated and will be forced to run on node20: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423, actions/checkout@8e5e7e5ab8b370d6c329ec480221332ada57f0ab. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "SARIF file".
Please update your workflow to use v4 of the artifact actions.
Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
SARIF file
Expired
|
37.9 KB |
|