Skip to content
CI

Add actionci.yml #789

Sign in to view logs

Add actionci.yml

Add actionci.yml #789

Triggered via pull request March 3, 2026 02:28
@tashiantashian
synchronize #431
carl/add-zizmor-frizbee
Status Failure
Total duration 1m 58s
Artifacts

ci.yml

on: pull_request
ci  /  ...  /  set-go-matrix
2s
ci / build / set-go-matrix
ci  /  ...  /  set-go-matrix
4s
ci / test / set-go-matrix
ci  /  actionlint
5s
ci / actionlint
ci  /  ...  /  lint
1m 14s
ci / lint / lint
ci  /  ...  /  govulncheck
40s
ci / govulncheck / govulncheck
ci  /  ...  /  Scan GitHub workflows
18s
ci / zizmor / Scan GitHub workflows
ci  /  ...  /  Check action pinning
9s
ci / frizbee / Check action pinning
Matrix: ci / codeql / CodeQL Analyze
Matrix: ci / build / build
Matrix: ci / test / test
Fit to window
Zoom out
Zoom in

Annotations

18 errors
ci / govulncheck / govulncheck
controller.main calls fmt.Sprintf, which eventually calls cert.RawNebulaEncryptedData.String
ci / govulncheck / govulncheck
hello.HelloReply.XXX_Marshal calls proto.InternalMessageInfo.Marshal, which eventually calls cert.RawNebulaEncryptedData.ProtoReflect
ci / govulncheck / govulncheck
controller.main calls fmt.Sprintf, which eventually calls cert.RawNebulaCertificateDetails.String
ci / govulncheck / govulncheck
hello.HelloReply.XXX_Marshal calls proto.InternalMessageInfo.Marshal, which eventually calls cert.RawNebulaCertificateDetails.ProtoReflect
ci / govulncheck / govulncheck
controller.main calls fmt.Sprintf, which eventually calls cert.RawNebulaCertificate.String
ci / govulncheck / govulncheck
hello.HelloReply.XXX_Marshal calls proto.InternalMessageInfo.Marshal, which eventually calls cert.RawNebulaCertificate.ProtoReflect
ci / govulncheck / govulncheck
controller.main calls fmt.Sprintf, which eventually calls cert.RawNebulaArgon2Parameters.String
ci / govulncheck / govulncheck
hello.HelloReply.XXX_Marshal calls proto.InternalMessageInfo.Marshal, which eventually calls cert.RawNebulaArgon2Parameters.ProtoReflect
ci / govulncheck / govulncheck
controller.main calls fmt.Sprintf, which eventually calls cert.Curve.String
ci / govulncheck / govulncheck
hello.HelloReply.String calls proto.CompactTextString, which eventually calls cert.Curve.Descriptor
ci / lint / lint
issues found
ci / lint / lint: examples/hello-mtls/go/server/server.go#L78
G705: XSS via taint analysis (gosec)
ci / lint / lint: examples/hello-mtls/go/client/client.go#L134
G704: SSRF via taint analysis (gosec)
ci / lint / lint: examples/hello-mtls/go-grpc/client/client.go#L90
G706: Log injection via taint analysis (gosec)
ci / lint / lint: examples/hello-mtls/go-grpc/client/client.go#L78
G706: Log injection via taint analysis (gosec)
ci / lint / lint: controller/main.go#L798
G703: Path traversal via taint analysis (gosec)
ci / lint / lint: controller/main.go#L139
G703: Path traversal via taint analysis (gosec)
ci / lint / lint: controller/client.go#L81
G704: SSRF via taint analysis (gosec)