Bump django from 1.3 to 3.2.25 #55
dependabot[bot]scan.yml
on: pull_request
gosec
24s
govulncheck
17s
tfsec
19s
bandit
16s
chekov-terraform
30s
chekov-bicep
39s
codeql-go
1m 20s
codeql-python
2m 20s
pip-audit
9s
Annotations
18 errors and 14 warnings
|
pip-audit
Process completed with exit code 1.
|
|
bandit
Process completed with exit code 1.
|
|
govulncheck
package slices is not in GOROOT (/opt/hostedtoolcache/go/1.19.0/x64/src/slices)
|
|
govulncheck
Process completed with exit code 1.
|
|
chekov-terraform
CKV_AWS_55: "Ensure S3 bucket has ignore public ACLs enabled"
|
|
chekov-terraform
CKV_AWS_53: "Ensure S3 bucket has block public ACLS enabled"
|
|
chekov-terraform
CKV_AWS_54: "Ensure S3 bucket has block public policy enabled"
|
|
chekov-terraform
CKV_AWS_56: "Ensure S3 bucket has 'restrict_public_buckets' enabled"
|
|
chekov-terraform
CKV2_AWS_62: "Ensure S3 buckets should have event notifications enabled"
|
|
chekov-terraform
CKV_AWS_145: "Ensure that S3 buckets are encrypted with KMS by default"
|
|
chekov-terraform
CKV2_AWS_61: "Ensure that an S3 bucket has a lifecycle configuration"
|
|
chekov-terraform
CKV_AWS_21: "Ensure all data stored in the S3 bucket have versioning enabled"
|
|
chekov-terraform
CKV_AWS_144: "Ensure that S3 bucket has cross-region replication enabled"
|
|
chekov-terraform
CKV_AWS_18: "Ensure the S3 bucket has access logging enabled"
|
|
chekov-bicep
CKV_AZURE_189: "Ensure that Azure Key Vault disables public network access"
|
|
chekov-bicep
CKV_AZURE_110: "Ensure that key vault enables purge protection"
|
|
chekov-bicep
CKV_AZURE_42: "Ensure the key vault is recoverable"
|
|
chekov-bicep
CKV_AZURE_109: "Ensure that key vault allows firewall rules settings"
|
|
bandit
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/setup-python@v4, github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
bandit
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
tfsec
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
tfsec
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
gosec
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
gosec
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
chekov-terraform
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
chekov-terraform
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
chekov-bicep
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/upload-sarif@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
chekov-bicep
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
codeql-go
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/init@v2, github/codeql-action/autobuild@v2, github/codeql-action/analyze@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
codeql-go
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|
|
codeql-python
The following actions use a deprecated Node.js version and will be forced to run on node20: github/codeql-action/init@v2, github/codeql-action/autobuild@v2, github/codeql-action/analyze@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
codeql-python
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
|