feat: port codeiq from Java/Spring Boot to Go single-binary (Phases 1-4) #126
aksOpssecurity.yml
on: pull_request
OSV-Scanner (SCA)
7s
Trivy (filesystem + container scan)
12s
Semgrep (SAST)
44s
Gitleaks (secret scan)
14s
jscpd (duplication < 3% on touched code)
14s
SBOM (SPDX + CycloneDX)
18s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
22.4 KB |
sha256:c1b2f0d4e870d0e9f950f95ffb876a99374d3ec8bf063a53809cfb70238b9cfc
|
|