CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/

Kubernetes Manifest Security Scan

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_15: "Image Pull Policy should be Always"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_31: "Ensure that the seccomp profile is set to docker/default or runtime/default"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_43: "Image should use digest"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_28: "Minimize the admission of containers with the NET_RAW capability"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_38: "Ensure that Service Account Tokens are only mounted where necessary"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_30: "Apply security context to your containers"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_29: "Apply security context to your pods and containers"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_23: "Minimize the admission of root containers"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_22: "Use read-only filesystem for containers where possible"

Kubernetes Manifest Security Scan: manifests/waf/modsecurity-deployment.yaml#L79

CKV_K8S_37: "Minimize the admission of containers with capabilities assigned"

Trivy Container Image Scan (ui)

Process completed with exit code 1.

Trivy Container Image Scan (ui)

Trivy Container Image Scan (api)

The strategy configuration was canceled because "trivy-container-scan.ui" failed

Trivy Container Image Scan (api)

Process completed with exit code 1.

Trivy Container Image Scan (api)

npm Dependency Vulnerability Scan

Process completed with exit code 1.

SAST with Semgrep

Trivy Container Image Scan (controller)

The strategy configuration was canceled because "trivy-container-scan.ui" failed

Trivy Container Image Scan (controller)

Process completed with exit code 1.

Trivy Container Image Scan (controller)

Path does not exist: trivy-controller-results.sarif

Trivy Container Image Scan (controller)

The operation was canceled.

CodeQL Analysis (go)

Go Dependency Vulnerability Scan (api)

Restore cache failed: Dependencies file is not found in /home/runner/work/streamspace/streamspace. Supported file pattern: go.sum

Trivy Container Image Scan (ui)

No files were found with the provided path: trivy-ui-report.html. No artifacts will be uploaded.

Trivy Container Image Scan (api)

No files were found with the provided path: trivy-api-report.html. No artifacts will be uploaded.

Trivy Container Image Scan (controller)

No files were found with the provided path: trivy-controller-report.html. No artifacts will be uploaded.

Artifacts

Produced during runtime

Name	Size	Digest
gitleaks-results.sarif Expired	6.62 KB	`sha256:c8d6b58d3112b2b6facb3d5afc199a282afbdf6716090a781ee98c7261a0fc54`

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix dashboard disconnect notification and flickering sidebar #124

Summary

Fix dashboard disconnect notification and flickering sidebar #124

Uh oh!

security-scan.yml

Annotations

Artifacts