feat: port codeiq from Java/Spring Boot to Go single-binary (Phases 1… #131
aksOpssecurity.yml
on: push
OSV-Scanner (SCA)
7s
Trivy (filesystem + container scan)
20s
Semgrep (SAST)
39s
Gitleaks (secret scan)
14s
jscpd (duplication < 3% on touched code)
19s
SBOM (SPDX + CycloneDX)
16s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
23.5 KB |
sha256:ea33a26638e21139668a0afd7131d6cf2ea4269567d955bf336cbe37d5faf4fb
|
|