Skip to content

Security Scan

Security Scan #63

Triggered via schedule June 15, 2026 11:09
Status Success
Total duration 3m 15s
Artifacts 3

security-scan.yml

on: schedule
Rust Security Audit
3m 5s
Rust Security Audit
Python Security Scan (Bandit)
12s
Python Security Scan (Bandit)
Dependency Vulnerability Scan
19s
Dependency Vulnerability Scan
Secret Detection
7s
Secret Detection
Weekly Full Security Audit
3m 10s
Weekly Full Security Audit
Security Scan Summary
Security Scan Summary
Fit to window
Zoom out
Zoom in

Annotations

2 errors and 8 warnings
Secret Detection
Process completed with exit code 1.
Secret Detection
BASE and HEAD commits are the same. TruffleHog won't scan anything. Please see documentation (https://github.com/trufflesecurity/trufflehog#octocat-trufflehog-github-action).
Secret Detection
The process '/usr/bin/git' failed with exit code 128
Python Security Scan (Bandit)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/upload-artifact@v4. Actions will be forced to run with Node.js 24 by default starting June 16th, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
Python Security Scan (Bandit)
The process '/usr/bin/git' failed with exit code 128
Dependency Vulnerability Scan
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/upload-artifact@v4. Actions will be forced to run with Node.js 24 by default starting June 16th, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
Dependency Vulnerability Scan
The process '/usr/bin/git' failed with exit code 128
Rust Security Audit
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/upload-artifact@v4. Actions will be forced to run with Node.js 24 by default starting June 16th, 2026. Node.js 20 will be removed from the runner on September 16th, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
Rust Security Audit
The process '/usr/bin/git' failed with exit code 128
Weekly Full Security Audit
The process '/usr/bin/git' failed with exit code 128

Artifacts

Produced during runtime
Name Size Digest
bandit-security-report
62.3 KB
sha256:729f993aaf4a5ad3db02bfc80cdce1055426597feb8fa2b7d4ce77d087486c7d
rust-audit-report
5.57 KB
sha256:aa663c15b9efde63cceed192f535990a6694ceb71cf66e4fa6b67c876c378b92
safety-dependency-report
2.95 KB
sha256:c9f531f47231e8e0ceddae59c1ce6963f811b09a070c480b985060176c6981a9