Enhance artifact pull and push commands #112
Merged
DryRunSecurity / Sensitive Files Analyzer
succeeded
Jun 21, 2024 in 1s
DryRun Security
Details
Sensitive Files Analyzer Findings: 2 detected
⚠️ Potential Sensitive File .env (click for details)
| Type | Potential Sensitive File |
| Description | Environment files may contain important configurations and secret keys. Care should be taken when modifying these values as they may introduce unintended security impacting behavior such as a missing or malformed key necessary for cryptographic operations or might lead to calling the wrong service, etc. all of which can impact the security posture of your application. |
| Filename | .env |
| CodeLink | https://github.com/intelops/genval/blob/1e409466d5ef39a6e1c5860db4ff0d05de6a4dd0/.env#L0-L-1 |
⚠️ Potential Sensitive File go.mod (click for details)
| Type | Potential Sensitive File |
| Description | Golang applications manage their dependencies through their go.mod and go.sum files. A change in these files may indicate an addition of a library/dependency which could introduce additional risk to the application either through vulnerable code, expansion of the application's attack surface via additional routes, or malicious code. |
| Filename | go.mod |
| CodeLink | Lines 24 to 30 in 1e40946 |
Loading