CI

Bump softprops/action-gh-release from 2.2.2 to 2.6.1 #97

Sign in to view logs

Triggered via pull request March 16, 2026 03:57

dependabot[bot]

opened #6

dependabot/github_actions/softprops/action-gh-release-2.6.1

Status Failure

Total duration 53s

Artifacts –

ci.yml

on: pull_request

Matrix: Go Build & Test

Python Test & Lint

Security Regression Tests

Test Count Drift Check

Dependency Vulnerability Audit

Documentation Validation

Shell Script Lint

Validate YAML configs

Verify action & container pins

Supply Chain & SBOM Verification

Release Branch Hardened Gate

Annotations

10 errors and 8 warnings

Dependency Vulnerability Audit

tool.main calls signal.NotifyContext, which eventually calls os.ReadDir

Dependency Vulnerability Audit

registry: govulncheck found vulnerabilities

Dependency Vulnerability Audit

securectl.apiDelete calls http.Client.Do, which eventually calls url.URL.Parse

Dependency Vulnerability Audit

registry.main calls http.Server.ListenAndServe, which eventually calls url.ParseRequestURI

Dependency Vulnerability Audit

securectl.apiDelete calls http.Client.Do, which eventually calls url.Parse

Dependency Vulnerability Audit

registry.main calls signal.NotifyContext, which eventually calls os.ReadDir

Dependency Vulnerability Audit

airlock: govulncheck found vulnerabilities

Dependency Vulnerability Audit

airlock.main calls http.Server.ListenAndServe, which eventually calls url.ParseRequestURI

Dependency Vulnerability Audit

airlock.main calls http.Server.ListenAndServe, which eventually calls url.Parse

Dependency Vulnerability Audit

airlock.main calls signal.NotifyContext, which eventually calls os.ReadDir

Supply Chain & SBOM Verification

Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod

Python Test & Lint

services/quarantine/quarantine/watcher.py:178: [MEDIUM] Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.

Python Test & Lint

services/quarantine/quarantine/pipeline.py:1437: [MEDIUM] Audit url open for permitted schemes. Allowing use of file:/ or custom schemes is often unexpected.

Python Test & Lint

services/agent/agent/sandbox.py:403: [MEDIUM] Probable insecure usage of temp file/directory.

Python Test & Lint

services/agent/agent/app.py:555: [MEDIUM] Chmod setting a permissive mask 0o660 on file (sock_path).

Security Regression Tests

Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod

Test Count Drift Check

Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod

Dependency Vulnerability Audit

Restore cache failed: Dependencies file is not found in /home/runner/work/SecAI_OS/SecAI_OS. Supported file pattern: go.mod