feat: port codeiq from Java/Spring Boot to Go single-binary (Phases 1-4) #115
aksOpssecurity.yml
on: pull_request
OSV-Scanner (SCA)
7s
Trivy (filesystem + container scan)
11s
Semgrep (SAST)
35s
Gitleaks (secret scan)
14s
jscpd (duplication < 3% on touched code)
15s
SBOM (SPDX + CycloneDX)
15s
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
sbom
|
23.5 KB |
sha256:f1b423e83c74b54868fdb468f4d4ae6b79989c48b7754bd14e5e53708e416fcb
|
|