Skip to content
Security Pipeline

Merge pull request #3 from timothywarner-org/claude/fix-ci-and-badges… #4

Sign in to view logs

Merge pull request #3 from timothywarner-org/claude/fix-ci-and-badges…

Merge pull request #3 from timothywarner-org/claude/fix-ci-and-badges… #4

Triggered via push December 6, 2025 02:34
@timothywarnertimothywarner
pushed de7496b
main
Status Failure
Total duration 2m 2s
Artifacts 1

security-pipeline.yml

on: push
Secret Detection
9s
Secret Detection
Dependency Vulnerability Scan
16s
Dependency Vulnerability Scan
Semgrep SAST
1m 53s
Semgrep SAST
IaC Security Scan
37s
IaC Security Scan
Container Security
1m 33s
Container Security
Security Gate
2s
Security Gate
Fit to window
Zoom out
Zoom in

Annotations

14 errors and 3 warnings
Secret Detection
Process completed with exit code 1.
Secret Detection
BASE and HEAD commits are the same. TruffleHog won't scan anything. Please see documentation (https://github.com/trufflesecurity/trufflehog#octocat-trufflehog-github-action).
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L116
CKV_AWS_23: "Ensure every security group and rule has a description"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_129: "Ensure that respective logs of Amazon Relational Database Service (Amazon RDS) are enabled"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_16: "Ensure all data stored in the RDS is securely encrypted at rest"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_161: "Ensure RDS database has IAM authentication enabled"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_293: "Ensure that AWS database instances have deletion protection enabled"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_118: "Ensure that enhanced monitoring is enabled for Amazon RDS instances"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_17: "Ensure all data stored in RDS is not publicly accessible"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_157: "Ensure that RDS instances have Multi-AZ enabled"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_133: "Ensure that RDS instances has backup policy"
IaC Security Scan: TerraGoat/terraform/aws/db-app.tf#L1
CKV_AWS_226: "Ensure DB instance gets all minor upgrades automatically"
Security Gate
Process completed with exit code 1.
Security Gate
Security gate failed - secrets detected in code
IaC Security Scan
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
Container Security
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
Semgrep SAST
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/

Artifacts

Produced during runtime
Name Size Digest
npm-audit-results Expired
14.1 KB
sha256:fb9a71b662ca30cc688652df380a33ec5a0488d5e35da065970ac71acf3dec08