Upgrade sonarcloud-github-action to sonarqube-scan-action · plgd-dev/device@fc6360a

Triggered via push July 2, 2025 17:20

Danielius1922

pushed fc6360a

main

Status Success

Total duration 8m 5s

Artifacts 2

build-publish.yaml

on: push

Matrix: build-and-publish-image

Annotations

4 warnings

Sensitive data should not be used in the ARG or ENV commands: test/cloud-server/Dockerfile#L23

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "IDENTITY_KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/cloud-server/Dockerfile#L21

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "MFG_KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/cloud-server/Dockerfile#L19

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "INTERMEDIATE_CA_KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Sensitive data should not be used in the ARG or ENV commands: test/cloud-server/Dockerfile#L17

SecretsUsedInArgOrEnv: Do not use ARG or ENV instructions for sensitive data (ENV "ROOT_CA_KEY") More info: https://docs.docker.com/go/dockerfile/rule/secrets-used-in-arg-or-env/

Artifacts

Produced during runtime

Name	Size	Digest
plgd-dev~device~KI67YM.dockerbuild Expired	81.7 KB	`sha256:8de50e0ee439157bd467689977ec8fc2b5e7345f50663e43930ea65c737de8bb`
plgd-dev~device~MYRND4.dockerbuild Expired	79.7 KB	`sha256:b6e84a17e78ab35252b0807f5d32419c681a47107f14ab7046bc91d032a31153`

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Upgrade sonarcloud-github-action to sonarqube-scan-action #369

Summary

Upgrade sonarcloud-github-action to sonarqube-scan-action #369

Uh oh!

build-publish.yaml

Annotations

Artifacts