Skip to content

Bump modelaudit from 0.2.42 to 0.2.45 in /services/quarantine #210

Bump modelaudit from 0.2.42 to 0.2.45 in /services/quarantine

Bump modelaudit from 0.2.42 to 0.2.45 in /services/quarantine #210

Triggered via pull request May 8, 2026 03:56
Status Failure
Total duration 10m 27s
Artifacts 1

ci.yml

on: pull_request
Matrix: Go Build & Test
Python Test & Lint
35s
Python Test & Lint
Hadolint & Semgrep
25s
Hadolint & Semgrep
Security Regression Tests
52s
Security Regression Tests
Test Count Drift Check
42s
Test Count Drift Check
Dependency Vulnerability Audit
50s
Dependency Vulnerability Audit
Documentation Validation
6s
Documentation Validation
Shell Script Lint
8s
Shell Script Lint
Release Helper Script Smoke
9s
Release Helper Script Smoke
Validate YAML configs
5s
Validate YAML configs
Image Reference Consistency
5s
Image Reference Consistency
Verify action, container, and EOL pins
8s
Verify action, container, and EOL pins
Supply Chain & SBOM Verification
11s
Supply Chain & SBOM Verification
Sandbox OpenVEX Smoke
7m 47s
Sandbox OpenVEX Smoke
Release Branch Hardened Gate
0s
Release Branch Hardened Gate
Fit to window
Zoom out
Zoom in

Annotations

10 errors and 12 warnings
Dependency Vulnerability Audit
gpu.cmdDaemon calls http.Server.ListenAndServe, which calls net.Listen
Dependency Vulnerability Audit
gpu.cmdStatus calls http.Client.Get, which eventually calls net.Dialer.DialContext
Dependency Vulnerability Audit
tool-firewall: govulncheck found vulnerabilities
Dependency Vulnerability Audit
tool.main calls http.Server.ListenAndServe, which calls net.Listen
Dependency Vulnerability Audit
registry: govulncheck found vulnerabilities
Dependency Vulnerability Audit
securectl.apiRequest calls http.Client.Do
Dependency Vulnerability Audit
registry.main calls http.Server.ListenAndServe, which calls net.Listen
Dependency Vulnerability Audit
securectl.apiRequest calls http.Client.Do, which eventually calls net.Dialer.DialContext
Dependency Vulnerability Audit
airlock: govulncheck found vulnerabilities
Dependency Vulnerability Audit
airlock.main calls http.Server.ListenAndServe, which calls net.Listen
Supply Chain & SBOM Verification
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
Test Count Drift Check
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
Dependency Vulnerability Audit
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
Security Regression Tests
Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod
Python Test & Lint
services/search-mediator/entrypoint.py:25: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/diffusion-worker/entrypoint.py:54: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/diffusion-worker/entrypoint.py:43: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/diffusion-worker/entrypoint.py:42: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/diffusion-worker/entrypoint.py:41: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/diffusion-worker/entrypoint.py:39: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/agent/agent/sandbox.py:403: [MEDIUM] Probable insecure usage of temp file/directory.
Python Test & Lint
services/agent/agent/app.py:656: [MEDIUM] Chmod setting a permissive mask 0o660 on file (sock_file).

Artifacts

Produced during runtime
Name Size Digest
sandbox-vex-smoke
1.2 KB
sha256:000592331357cee8e0494cbd3b0088d9812df202faaaef67c71de87fb8f0e000