Skip to content
Security vulnerability scan

Security vulnerability scan #413

Sign in to view logs

Security vulnerability scan

Security vulnerability scan #413

Triggered via schedule January 27, 2024 02:00
@denyeartdenyeart
5b23e62
main
Status Failure
Total duration 2m 41s
Artifacts

vulnerability-scan.yml

on: schedule
Matrix: scan
Fit to window
Zoom out
Zoom in

Annotations

40 errors and 4 warnings
scan (main)
persistence.ParseChaincodePackage calls io.ReadAll, which eventually calls internal.chunkedReader.Read
scan (main)
chaincode.Packager.Package calls filepath.Abs
scan (main)
chaincode.Packager.Package calls filepath.Abs
scan (main)
nwo.Network.StartSession calls filepath.Base
scan (main)
nwo.Network.StartSession calls filepath.Base
scan (main)
externalbuilder.ValidPath calls filepath.Clean
scan (main)
externalbuilder.ValidPath calls filepath.Clean
scan (main)
peer.GetServerConfig calls filepath.Dir
scan (main)
peer.GetServerConfig calls filepath.Dir
scan (main)
persistence.ParseChaincodePackage calls tar.Reader.Next, which calls filepath.IsLocal
scan (release-2.2)
persistence.ChaincodePackageParser.Parse calls ioutil.ReadAll, which eventually calls internal.chunkedReader.Read
scan (release-2.2)
chaincode.Packager.Package calls filepath.Abs
scan (release-2.2)
chaincode.Packager.Package calls filepath.Abs
scan (release-2.2)
nwo.Network.StartSession calls filepath.Base
scan (release-2.2)
nwo.Network.StartSession calls filepath.Base
scan (release-2.2)
externalbuilder.ValidPath calls filepath.Clean
scan (release-2.2)
externalbuilder.ValidPath calls filepath.Clean
scan (release-2.2)
peer.GetServerConfig calls filepath.Dir
scan (release-2.2)
peer.GetServerConfig calls filepath.Dir
scan (release-2.2)
persistence.ChaincodePackageParser.Parse calls tar.Reader.Next, which calls filepath.IsLocal
scan (release-2.4)
channelparticipation.doBody calls io.ReadAll, which eventually calls internal.chunkedReader.Read
scan (release-2.4)
chaincode.Packager.Package calls filepath.Abs
scan (release-2.4)
chaincode.Packager.Package calls filepath.Abs
scan (release-2.4)
nwo.Network.StartSession calls filepath.Base
scan (release-2.4)
nwo.Network.StartSession calls filepath.Base
scan (release-2.4)
externalbuilder.ValidPath calls filepath.Clean
scan (release-2.4)
externalbuilder.ValidPath calls filepath.Clean
scan (release-2.4)
peer.GetServerConfig calls filepath.Dir
scan (release-2.4)
peer.GetServerConfig calls filepath.Dir
scan (release-2.4)
gendoc.main calls packages.Load, which eventually calls filepath.EvalSymlinks
scan (release-2.5)
channelparticipation.doBody calls io.ReadAll, which eventually calls internal.chunkedReader.Read
scan (release-2.5)
chaincode.Packager.Package calls filepath.Abs
scan (release-2.5)
chaincode.Packager.Package calls filepath.Abs
scan (release-2.5)
nwo.Network.StartSession calls filepath.Base
scan (release-2.5)
nwo.Network.StartSession calls filepath.Base
scan (release-2.5)
externalbuilder.ValidPath calls filepath.Clean
scan (release-2.5)
externalbuilder.ValidPath calls filepath.Clean
scan (release-2.5)
peer.GetServerConfig calls filepath.Dir
scan (release-2.5)
peer.GetServerConfig calls filepath.Dir
scan (release-2.5)
persistence.ParseChaincodePackage calls tar.Reader.Next, which calls filepath.IsLocal
scan (main)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/setup-go@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scan (release-2.2)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/setup-go@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scan (release-2.4)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/setup-go@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
scan (release-2.5)
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, actions/setup-go@v3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.