Process completed with exit code 1.

BASE and HEAD commits are the same. TruffleHog won't scan anything. Please see documentation (https://github.com/trufflesecurity/trufflehog#octocat-trufflehog-github-action).

An error occurred trying to start process '/usr/bin/bash' with working directory '/home/runner/work/github-security-testbed/github-security-testbed/./NodeGoat'. No such file or directory

CKV_AWS_300: "Ensure S3 lifecycle configuration sets period for aborting failed uploads"

CKV_AWS_135: "Ensure that EC2 is EBS optimized"

CKV_AWS_24: "Ensure no security groups allow ingress from 0.0.0.0:0 to port 22"

CKV_AZURE_12: "Ensure that Network Security Group Flow Log retention period is 'greater than 90 days'"

CKV_AZURE_12: "Ensure that Network Security Group Flow Log retention period is 'greater than 90 days'"

CKV_AZURE_12: "Ensure that Network Security Group Flow Log retention period is 'greater than 90 days'"

CKV_AZURE_59: "Ensure that Storage accounts disallow public access"

CKV_AZURE_33: "Ensure Storage logging is enabled for Queue service for read, write and delete requests"

CKV_AZURE_190: "Ensure that Storage blobs restrict public access"

CKV_AZURE_206: "Ensure that Storage Accounts use replication"

Process completed with exit code 1.

Security gate failed - secrets detected in code

No files were found with the provided path: npm-audit-*.json. No artifacts will be uploaded.

CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/

CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/