Feature/security scan by AsgerT10 · Pull Request #195 · sebsthiel/minitwit-devops

AsgerT10 · 2026-04-30T06:34:19Z

add semgrep as security tool

codacy-production · 2026-04-30T06:34:37Z

Not up to standards ⛔

🔴 Issues 1 high

Alerts:
⚠ 1 issue (≤ 0 issues of at least minor severity)

Results:
1 new issue

Category Results

Security 1 high

View in Codacy

🟢 Metrics 0 complexity · 0 duplication

Metric Results

Complexity 0

Duplication 0

View in Codacy

_{NEW Get contextual insights on your PRs based on Codacy's metrics, along with PR and Jira context, without leaving GitHub. Enable AI reviewer}
_{TIP This summary will be updated as you push new changes.}

sebsthiel · 2026-05-01T08:07:34Z

Looks good to me

sebsthiel · 2026-05-01T14:35:53Z

      - name: Build
        run: go build ./...
+
+      - name: Build Docker images


We are again building the images multiple times.

Maybe remove the build step here and move the trivy scans to the "merged-tests.yml" file instead?
That way we can reuse the build images

sonarqubecloud · 2026-05-03T16:08:58Z

Quality Gate failed

Failed conditions
2 Security Hotspots

See analysis details on SonarQube Cloud

sebsthiel

Nice, it seems good to me now 👍

AsgerT10 and others added 9 commits April 27, 2026 10:37

Add security scanning with Semgrep and Trivy

13c107a

Add security scanning with Semgrep and Trivy and dev-pr-yml

d1524fb

Merge branch 'develop' into feature/security-scan

a560abf

Ignore false positive in Trivy scan

54c9e2a

Add trivy ignore file

0a5fb0c

Add trivy ignore

fd88e9a

fix hopefully

e084cf3

Fix vulnerability in pgx

e4e3135

trivy ingore

2b00db2

sebsthiel requested changes Apr 30, 2026

View reviewed changes

Comment thread Makefile Outdated

Comment thread Makefile Outdated

AsgerT10 added 4 commits April 30, 2026 08:48

fix: organize semgrep and clarify monitoring commands

634b879

Remove redundant runlocalmonitoring command

906cce3

Remove Trivy scan (using Snyk instead)

10804b6

Remove Docker build step from quality gate job

741c05a

sebsthiel approved these changes May 1, 2026

View reviewed changes

AsgerT10 added 4 commits May 1, 2026 15:48

Use CI-built images in docker-compose instead of rebuilding

6832364

Fix Trivy action version

64060e8

exit code to 0

4eea7a3

test fail

3286d0c

sebsthiel requested changes May 1, 2026

View reviewed changes

remove so we dont make useless images

43866b0

sebsthiel approved these changes May 3, 2026

View reviewed changes

AsgerT10 merged commit 6617961 into develop May 7, 2026
2 of 4 checks passed

mekererenate-web deleted the feature/security-scan branch May 14, 2026 18:43

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Feature/security scan#195

Feature/security scan#195
AsgerT10 merged 18 commits into
developfrom
feature/security-scan

AsgerT10 commented Apr 30, 2026

Uh oh!

codacy-production Bot commented Apr 30, 2026 •

edited

Loading

Uh oh!

Uh oh!

Uh oh!

sebsthiel commented May 1, 2026

Uh oh!

sebsthiel May 1, 2026

Uh oh!

sonarqubecloud Bot commented May 3, 2026

Uh oh!

sebsthiel left a comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Conversation

AsgerT10 commented Apr 30, 2026

Uh oh!

codacy-production Bot commented Apr 30, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Not up to standards ⛔

Uh oh!

Uh oh!

Uh oh!

sebsthiel commented May 1, 2026

Uh oh!

sebsthiel May 1, 2026

Choose a reason for hiding this comment

Uh oh!

sonarqubecloud Bot commented May 3, 2026

Quality Gate failed

Uh oh!

sebsthiel left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

codacy-production Bot commented Apr 30, 2026 •

edited

Loading