Security #221
easelsecurity.yml
on: schedule
Secret Scanning
14s
Dependency Scanning
59s
Static Analysis Security Testing
2m 24s
Security Summary
3s
Annotations
12 errors and 2 warnings
|
Dependency Scanning
auth.GitHubAuthenticator.ValidateToken calls http.NewRequestWithContext, which calls url.Parse
|
|
Dependency Scanning
mcp.ClaudeWrapper.RemoveServer calls exec.Command, which eventually calls asn1.Unmarshal
|
|
Dependency Scanning
update.FetchLatestRelease calls http.Get
|
|
Dependency Scanning
cmd.downloadAndInstall calls http.Client.Get
|
|
Dependency Scanning
auth.GitHubAuthenticator.ValidateToken calls http.Client.Do
|
|
Dependency Scanning
persona.PersonaLoaderImpl.ListPersonas calls fmt.Fprintf, which eventually calls x509.Certificate.Verify
|
|
Dependency Scanning
cmd.extractTarGz calls tar.Reader.Next
|
|
Dependency Scanning
persona.PersonaLoaderImpl.ListPersonas calls fmt.Fprintf, which eventually calls x509.Certificate.VerifyHostname
|
|
Dependency Scanning
persona.PersonaLoaderImpl.ListPersonas calls fmt.Fprintf, which eventually calls x509.Certificate.Verify
|
|
Dependency Scanning
persona.PersonaLoaderImpl.ListPersonas calls fmt.Fprintf, which eventually calls x509.Certificate.Verify
|
|
Dependency Scanning
Process completed with exit code 1.
|
|
Security Summary
Process completed with exit code 1.
|
|
Secret Scanning
🛑 Leaks detected, see job summary for details
|
|
Static Analysis Security Testing
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
gitleaks-results.sarif
|
9.65 KB |
sha256:139034226b4b23ff538727cd2d283c9a1f685aa13c14af43b3ca3775911a0c44
|
|