chore(deps)(deps): bump opentelemetry-sdk from 1.38.0 to 1.40.0 #10
dependabot[bot]security-audit.yml
on: pull_request
Audit Python Dependencies
44s
SAST - Python Security Analysis
20s
Scan for Secrets
6s
Security Summary
2s
Annotations
5 errors and 6 warnings
|
Audit Python Dependencies
Process completed with exit code 1.
|
|
Audit Python Dependencies
High severity vulnerabilities detected by pip-audit
|
|
Audit Python Dependencies
Process completed with exit code 1.
|
|
Security Summary
Process completed with exit code 1.
|
|
Security Summary
Security checks failed. Please review the audit results.
|
|
Scan for Secrets
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/checkout@v4, gitleaks/gitleaks-action@v2. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
SAST - Python Security Analysis
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/checkout@v4, actions/setup-python@v5, actions/upload-artifact@v4, github/codeql-action/upload-sarif@v3. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
SAST - Python Security Analysis
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
|
Audit Python Dependencies
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/checkout@v4, actions/setup-python@v5, actions/upload-artifact@v4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Audit Python Dependencies
No files were found with the provided path: pip-audit-report.json. No artifacts will be uploaded.
|
|
Audit Python Dependencies
Safety detected potential vulnerabilities. Please review the report above.
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
bandit-report
Expired
|
6.71 KB |
sha256:5cccde6d2b1bb7865d988fc93623a7e5ab874daba13a02f97c05764c0e92fb88
|
|
|
gitleaks-results.sarif
|
669 Bytes |
sha256:ef3021ebc147bc567e1b125fe62e0ffbb8867c5441664db2b6afe817ffae9b07
|
|