feat(release): Phase 5 — Goreleaser + Sigstore + perf gate (#131) #134
aksOpssecurity.yml
on: push
OSV-Scanner (SCA)
5s
Trivy (filesystem + container scan)
11s
Semgrep (SAST)
36s
Gitleaks (secret scan)
14s
jscpd (duplication < 3% on touched code)
19s
SBOM (SPDX + CycloneDX)
16s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
25.7 KB |
sha256:0cd8dc26ccdb46fd8006368cc9fd36d8e45f471ec24615941030b1977c19e2f6
|
|