feat: Add Security Agent Workflow for automated security assessments #21
emmanuelknafocicd.yml
on: push
Build and Publish Container Image
/
set-version
10s
Deploy Azure Infrastructure
1m 36s
Build and Publish Container Image
/
...
/
scan-image
1m 15s
Build and Deploy to Azure Web App
1m 48s
Build and Publish Container Image
/
...
/
publish-image
1m 17s
Annotations
10 warnings and 3 notices
|
Build and Publish Container Image / scan-image / scan-image
CodeQL Action v3 will be deprecated in December 2026. Please update all occurrences of the CodeQL Action in your workflow files to v4. For more information, see https://github.blog/changelog/2025-10-28-upcoming-deprecation-of-codeql-action-v3/
|
|
Build and Publish Container Image / scan-image / scan-image
Failed minimum severity level. Found vulnerabilities with level 'medium' or higher
|
|
Build and Deploy to Azure Web App
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Possible null reference assignment.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Converting null literal or possible null value to non-nullable type.
|
|
Build and Deploy to Azure Web App:
src/webapp01/Pages/Index.cshtml.cs#L22
Possible null reference assignment.
|
|
Build and Publish Container Image / publish-image / publish-image
Snapshot successfully created at 2026-01-29T04:23:50.452Z
|
|
Build and Publish Container Image / publish-image / publish-image
{
"manifests": {},
"version": 0,
"job": {
"correlator": "publish-image",
"id": "21465527323"
},
"sha": "108e9e5b8e727c22b9d9a79d4a695281a3ca8136",
"ref": "refs/heads/main",
"scanned": "2026-01-29T04:23:50.121Z",
"detector": {
"name": "spdx-to-dependency-graph-action",
"version": "0.1.1",
"url": "https://github.com/advanced-security/spdx-dependency-submission-action"
}
}
|
|
Build and Publish Container Image / publish-image / publish-image
Submitting snapshot...
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
devopsabcs-engineering~gh-advsec-devsecops~KW1H5D.dockerbuild
|
38 KB |
sha256:a5bf2c54cbc1a481671fd820018ec8576dd3aaf2f496b4fd19a27948aebea22a
|
|
|
devopsabcs-engineering~gh-advsec-devsecops~YU1JV8.dockerbuild
|
74 KB |
sha256:09f186301cab4c708ac126de90f77074c0e11652fe1eeed3719b217252af5f80
|
|
|
sarif
|
3.39 KB |
sha256:f5a8acafc6cbb3ded62843867fed5d3fde92bb53a46ee44535a9ca8b82099e66
|
|