Checkov #137
checkov.yaml
on: schedule
Checkov
/
Checkov Scan
56s
Annotations
10 errors and 1 warning
Checkov / Checkov Scan:
.github/workflows/mac.yaml#L61
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/debian.yaml#L61
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/validate.yaml#L38
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/grype.yaml#L36
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/fork-update-pr.yaml#L28
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/trivy.yaml#L38
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/gradle.yaml#L28
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/kics.yaml#L36
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/mac_12.yaml#L61
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan:
.github/workflows/semgrep.yaml#L40
CKV_GHA_7: "The build output cannot be affected by user parameters other than the build entry point and the top-level source location. GitHub Actions workflow_dispatch inputs MUST be empty. "
|
Checkov / Checkov Scan
The following actions uses node12 which is deprecated and will be forced to run on node16: actions/setup-python@v1. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
|