fix(release): cosign v4 bundle format #145
aksOpssecurity.yml
on: pull_request
OSV-Scanner (SCA)
6s
Trivy (filesystem + container scan)
7s
Semgrep (SAST)
24s
Gitleaks (secret scan)
14s
jscpd (duplication < 3% on touched code)
12s
SBOM (SPDX + CycloneDX)
15s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
12.4 KB |
sha256:78e872572ad5e275ed51677d6e8c40bda7447091fca8c56ba1cd6fd7be40af00
|
|