Skip to content

feat: improve source code detection using malware insights on obfusca… #582

feat: improve source code detection using malware insights on obfusca…

feat: improve source code detection using malware insights on obfusca… #582

Triggered via push April 20, 2026 00:16
Status Success
Total duration 47m 23s
Artifacts 5

release.yaml

on: push
Matrix: build / Build Macaron
Waiting for pending jobs
Matrix: check / Build Macaron
build  /  ...  /  build-docker
build / build_docker_image / build-docker
check  /  ...  /  build-docker
17m 1s
check / build_docker_image / build-docker
build  /  ...  /  Analyzing and comparing different versions of an artifact
build / build_docker_image / test-macaron-action / Analyzing and comparing different versions of an artifact
build  /  ...  /  Detecting Java dependencies manually uploaded to Maven Central
build / build_docker_image / test-macaron-action / Detecting Java dependencies manually uploaded to Maven Central
build  /  ...  /  Detecting malicious packages
build / build_docker_image / test-macaron-action / Detecting malicious packages
build  /  ...  /  Exclude and include checks in Macaron
build / build_docker_image / test-macaron-action / Exclude and include checks in Macaron
build  /  ...  /  How to detect vulnerable GitHub Actions
build / build_docker_image / test-macaron-action / How to detect vulnerable GitHub Actions
build  /  ...  /  How to detect vulnerable GitHub Actions
build / build_docker_image / test-macaron-action / How to detect vulnerable GitHub Actions
build  /  ...  /  How to detect vulnerable GitHub Actions
build / build_docker_image / test-macaron-action / How to detect vulnerable GitHub Actions
build  /  ...  /  Provenance discovery, extraction, and verification
build / build_docker_image / test-macaron-action / Provenance discovery, extraction, and verification
check  /  ...  /  Analyzing and comparing different versions of an artifact
1m 6s
check / build_docker_image / test-macaron-action / Analyzing and comparing different versions of an artifact
check  /  ...  /  Detecting malicious packages
3m 32s
check / build_docker_image / test-macaron-action / Detecting malicious packages
check  /  ...  /  How to detect vulnerable GitHub Actions
1m 38s
check / build_docker_image / test-macaron-action / How to detect vulnerable GitHub Actions
check  /  ...  /  Provenance discovery, extraction, and verification
3m 9s
check / build_docker_image / test-macaron-action / Provenance discovery, extraction, and verification
check  /  ...  /  Detecting Java dependencies manually uploaded to Maven Central
52s
check / build_docker_image / test-macaron-action / Detecting Java dependencies manually uploaded to Maven Central
check  /  ...  /  Exclude and include checks in Macaron
3m 5s
check / build_docker_image / test-macaron-action / Exclude and include checks in Macaron
check  /  ...  /  How to detect vulnerable GitHub Actions
51s
check / build_docker_image / test-macaron-action / How to detect vulnerable GitHub Actions
check  /  ...  /  How to detect vulnerable GitHub Actions
1m 2s
check / build_docker_image / test-macaron-action / How to detect vulnerable GitHub Actions
Deploy GitHub pages  /  deploy
Deploy GitHub pages / deploy
Rebase main branch on release  /  rebase
Rebase main branch on release / rebase
Fit to window
Zoom out
Zoom in

Artifacts

Produced during runtime
Name Size Digest
artifact-ubuntu-latest-python-3.11 Expired
27.6 MB
sha256:b24ea4d8acae2b0ebff63e6e5ecdd5b8f27c638fdc8db66b7ebd2b6c7bd82697
macaron-reports-vulnerable-actions-purl
35.5 KB
sha256:ab2ecbf33c45e1034ef993c873314c91caaa36038482fb2d707576245b8c209d
macaron-reports-vulnerable-actions-repo
21 KB
sha256:8cd1bc29bcede0079a3543e8472151cfcb6f973aaf34bda4d48fa5ab0978504b
macaron-test-image Expired
377 MB
sha256:a6d50b5869afb4c8af997ab5a617843c3792b8354b54b463db7596c2db5785f9
macaron-vulnerable-actions-fail-diagnosis
22.2 KB
sha256:35a069822f2a93b022329c1c77b677613e20bdf3ef7132fd10e620cde4b27b6b