Skip to content

Addressing comment on PR #273 #222

Sign in to view logs

Addressing comment on PR #273

Addressing comment on PR #273 #222

Triggered via dynamic March 6, 2026 17:05
@CopilotCopilot
d5818d4
copilot/sub-pr-264
Status Success
Total duration 13m 41s
Artifacts

copilot

on: dynamic
copilot
13m 35s
copilot
Fit to window
Zoom out
Zoom in

Annotations

20 errors
copilot
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot
G118: Goroutine uses context.Background/TODO while request-scoped context is available (gosec)
copilot
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot
G706: Log injection via taint analysis (gosec)
copilot
G118: Goroutine uses context.Background/TODO while request-scoped context is available (gosec)
copilot
G118: Goroutine uses context.Background/TODO while request-scoped context is available (gosec)
copilot
G118: context cancellation function returned by WithCancel/WithTimeout/WithDeadline is not called (gosec)
copilot
G703: Path traversal via taint analysis (gosec)\n2026-03-06T17:08:16.0738643Z \t\treturn os.WriteFile(destPath, data, info.Mode())\n2026-03-06T17:08:16.0739006Z \t\t ^\n2026-03-06T17:08:16.0739217Z 61 issues:\n2026-03-06T17:08:16.0739403Z * gosec: 61\n2026-03-06T17:08:16.0739512Z \n2026-03-06T17:08:16.0750111Z ##[error]issues found\n2026-03-06T17:08:16.0750989Z Ran golangci-lint in 109254ms\n2026-03-06T17:08:16.0751428Z ##[endgroup]\n2026-03-06T17:08:16.0822307Z Post job cleanup.\n2026-03-06T17:08:16.2780142Z Cache hit occurred on the primary key golangci-lint.cache-Linux-2931-d516255270ad0d9e8814463dab939114077d67c0, not saving cache.\n2026-03-06T17:08:16.2924720Z Post job cleanup.\n2026-03-06T17:08:16.4028823Z [command]/usr/bin/git version\n2026-03-06T17:08:16.4080315Z git version 2.53.0\n2026-03-06T17:08:16.4137265Z Temporarily overriding HOME='/home/runner/work/_temp/d9d67984-2319-43a1-b9a9-a2d9e1d4ff9c' before making global git config changes\n2026-03-06T17:08:16.4139133Z Adding repository directory to the temporary git global config as a safe directory\n2026-03-06T17:08:16.4145897Z [command]/usr/bin/git config --global --add safe.directory /home/runner/work/workflow/workflow\n2026-03-06T17:08:16.4192534Z [command]/usr/bin/git config --local --name-only --get-regexp core\\.sshCommand\n2026-03-06T17:08:16.4231671Z [command]/usr/bin/git submodule foreach --recursive sh -c \"git config --local --name-only --get-regexp 'core\\.sshCommand' && git config --local --unset-all 'core.sshCommand' || :\"\n2026-03-06T17:08:16.4535355Z [command]/usr/bin/git config --local --name-only --get-regexp http\\.https\\:\\/\\/github\\.com\\/\\.extraheader\n2026-03-06T17:08:16.4568233Z http.https://github.com/.extraheader\n2026-03-06T17:08:16.4583510Z [command]/usr/bin/git config --local --unset-all http.https://github.com/.extraheader\n2026-03-06T17:08:16.4628962Z [command]/usr/bin/git submodule foreach --recursive sh -c \"git config --local --name-only --get-regexp 'http\\.https\\:\\/\\/github\\.com\\/\\.extraheader' && git config --local --unset-all 'http.https://github.com/.extraheader' || :\"\n2026-03-06T17:08:16.4930082Z [command]/usr/bin/git config --local --name-only --get-regexp ^includeIf\\.gitdir:\n2026-03-06T17:08:16.4973822Z [command]/usr/bin/git submodule foreach --recursive git config --local --show-origin --name-only --get-regexp remote.origin.url\n2026-03-06T17:08:16.5398026Z Cleaning up orphan processes","message":"Job logs content retrieved successfully","original_length":519}
copilot
G703: Path traversal via taint analysis (gosec)\n2026-03-06T17:01:07.2736931Z \t\treturn os.WriteFile(destPath, data, info.Mode())\n2026-03-06T17:01:07.2737265Z \t\t ^\n2026-03-06T17:01:07.2737463Z 61 issues:\n2026-03-06T17:01:07.2737639Z * gosec: 61\n2026-03-06T17:01:07.2737836Z \n2026-03-06T17:01:07.2746792Z ##[error]issues found\n2026-03-06T17:01:07.2747651Z Ran golangci-lint in 105399ms\n2026-03-06T17:01:07.2748213Z ##[endgroup]\n2026-03-06T17:01:07.2809269Z Post job cleanup.\n2026-03-06T17:01:07.4495619Z Cache hit occurred on the primary key golangci-lint.cache-Linux-2931-d516255270ad0d9e8814463dab939114077d67c0, not saving cache.\n2026-03-06T17:01:07.4612495Z Post job cleanup.\n2026-03-06T17:01:07.5520146Z [command]/usr/bin/git version\n2026-03-06T17:01:07.5553914Z git version 2.53.0\n2026-03-06T17:01:07.5606717Z Temporarily overriding HOME='/home/runner/work/_temp/46c729e4-a0eb-4771-b65e-ea3433fba8b5' before making global git config changes\n2026-03-06T17:01:07.5608011Z Adding repository directory to the temporary git global config as a safe directory\n2026-03-06T17:01:07.5623333Z [command]/usr/bin/git config --global --add safe.directory /home/runner/work/workflow/workflow\n2026-03-06T17:01:07.5662108Z [command]/usr/bin/git config --local --name-only --get-regexp core\\.sshCommand\n2026-03-06T17:01:07.5696096Z [command]/usr/bin/git submodule foreach --recursive sh -c \"git config --local --name-only --get-regexp 'core\\.sshCommand' && git config --local --unset-all 'core.sshCommand' || :\"\n2026-03-06T17:01:07.5918211Z [command]/usr/bin/git config --local --name-only --get-regexp http\\.https\\:\\/\\/github\\.com\\/\\.extraheader\n2026-03-06T17:01:07.5938347Z http.https://github.com/.extraheader\n2026-03-06T17:01:07.5950187Z [command]/usr/bin/git config --local --unset-all http.https://github.com/.extraheader\n2026-03-06T17:01:07.5976868Z [command]/usr/bin/git submodule foreach --recursive sh -c \"git config --local --name-only --get-regexp 'http\\.https\\:\\/\\/github\\.com\\/\\.extraheader' && git config --local --unset-all 'http.https://github.com/.extraheader' || :\"\n2026-03-06T17:01:07.6159728Z [command]/usr/bin/git config --local --name-only --get-regexp ^includeIf\\.gitdir:\n2026-03-06T17:01:07.6187212Z [command]/usr/bin/git submodule foreach --recursive git config --local --show-origin --name-only --get-regexp remote.origin.url\n2026-03-06T17:01:07.6474864Z Cleaning up orphan processes","message":"Job logs content retrieved successfully","original_length":503},{"job_id":66060199279,"job_name":"UI Tests","logs_content":"2026-03-06T16:58:36.3263339Z [command]/usr/bin/git config --local --name-only --get-regexp ^includeIf\\.gitdir:\n2026-03-06T16:58:36.3296070Z [command]/usr/bin/git submodule foreach --recursive git config --local --show-origin --name-only --get-regexp remote.origin.url\n2026-03-06T16:58:36.3535055Z [command]/usr/bin/git config --local http.https://github.com/.extraheader AUTHORIZATION: basic ***\n2026-03-06T16:58:36.3569933Z ##[endgroup]\n2026-03-06T16:58:36.3570918Z ##[group]Fetching the repository\n2026-03-06T16:58:36.3578880Z [command]/usr/bin/git -c protocol.version=2 fetch --no-tags --prune --no-recurse-submodules --depth=1 origin +5fc3789fd81c78905cff31fb75661af085e780f8:refs/remotes/origin/main\n2026-03-06T16:58:37.6693181Z From https://github.com/GoCodeAlone/workflow\n2026-03-06T16:58:37.6695246Z * [new ref] 5fc3789fd81c78905cff31fb75661af085e780f8 -> origin/main\n2026-03-06T16:58:37.6729286Z ##[endgroup]\n2026-03-06T16:58:37.6732419Z ##[group]Determining the checkout info\n2026-03-06T16:58:37.6733921Z ##[endgroup]\n2026-03-06T16:58:37.6737904Z [command]/usr/bin/git sparse-checkout disable\n2026-03-06T16:58:37.6782743Z [command]/usr/bin/git config --local --unset-all extensions.worktreeConfig\n2026-03-06T16:58:37.6814438Z ##[group]Checking out the ref\n2026-03-06T16:58:37.6816980Z [command]/usr/bin/git checkout --progress --force -B main refs/remotes/origin/main\n2026-03-06T16:58:37.9013293Z Switched to a new branch 'main'\n2026-03-06T16:58:37.9015419Z br
copilot: module/auth_m2m.go#L313
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot: module/auth_m2m.go#L280
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot: module/auth_m2m.go#L274
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot: module/api_workflow_handler.go#L47
G118: Goroutine uses context.Background/TODO while request-scoped context is available (gosec)
copilot: module/api_v1_handler.go#L1073
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot: module/api_v1_handler.go#L1061
G120: Parsing form data without limiting request body size can allow memory exhaustion (use http.MaxBytesReader) (gosec)
copilot: module/api_v1_handler.go#L925
G706: Log injection via taint analysis (gosec)
copilot: middleware/apikey.go#L75
G118: Goroutine uses context.Background/TODO while request-scoped context is available (gosec)
copilot: licensing/validator.go#L100
G118: Goroutine uses context.Background/TODO while request-scoped context is available (gosec)
copilot: cmd/server/main.go#L1425
G118: context cancellation function returned by WithCancel/WithTimeout/WithDeadline is not called (gosec)