Skip to content
1. CI - Pull Request

axios vulnerability #3005

Sign in to view logs

axios vulnerability

axios vulnerability #3005

Triggered via push February 10, 2026 14:45
@nhsd-david-wassnhsd-david-wass
pushed 95a5ffc
feature/CCM-13399-Manual_Supplier_Allocation
Status Failure
Total duration 5m 19s
Artifacts 5

cicd-1-pull-request.yaml

on: push
Set CI/CD metadata
8s
Set CI/CD metadata
Commit stage  /  Scan secrets
10s
Commit stage / Scan secrets
Commit stage  /  Check file format
10s
Commit stage / Check file format
Commit stage  /  Check Markdown format
10s
Commit stage / Check Markdown format
Commit stage  /  Check English usage
7s
Commit stage / Check English usage
Commit stage  /  Check TODO usage
6s
Commit stage / Check TODO usage
Commit stage  /  Trivy Package Scan
12s
Commit stage / Trivy Package Scan
Commit stage  /  Count lines of code
9s
Commit stage / Count lines of code
Commit stage  /  Scan dependencies
43s
Commit stage / Scan dependencies
Commit stage  /  Check for changes to event schema package compared to main branch
6s
Commit stage / Check for changes to event schema package compared to main branch
Commit stage  /  Detect Terraform Changes
7s
Commit stage / Detect Terraform Changes
Commit stage  /  Check event schema version has been updated
0s
Commit stage / Check event schema version has been updated
Commit stage  /  Check for event schemas package version change
0s
Commit stage / Check for event schemas package version change
Commit stage  /  Run terraform-docs
10s
Commit stage / Run terraform-docs
Commit stage  /  Lint Terraform
4s
Commit stage / Lint Terraform
Commit stage  /  Trivy IaC Scan
13s
Commit stage / Trivy IaC Scan
Test stage  /  Check generated dependencies
1m 14s
Test stage / Check generated dependencies
Test stage  /  Pact tests
1m 21s
Test stage / Pact tests
Test stage  /  Linting
2m 58s
Test stage / Linting
Test stage  /  Typecheck
2m 15s
Test stage / Typecheck
Test stage  /  Unit tests
3m 9s
Test stage / Unit tests
Test stage  /  Test coverage
3s
Test stage / Test coverage
Test stage  /  Perform static analysis
1m 3s
Test stage / Perform static analysis
Build stage  /  Build Docs
Build stage / Build Docs
Build stage  /  Create Dynamic Environment
Build stage / Create Dynamic Environment
Matrix: Build stage / artefact-oas-spec
Waiting for pending jobs
Build stage  /  Build OAS spec for sandbox
Build stage / Build OAS spec for sandbox
Build stage  /  Build SDKs
Build stage / Build SDKs
Build stage  /  Build proxies
Build stage / Build proxies
Acceptance stage  /  Run Acceptance Tests
Acceptance stage / Run Acceptance Tests
Publish stage  /  Publish packages
Publish stage / Publish packages
Publish stage  /  Publish npm packages to npm.pkg.github.com
Publish stage / Publish npm packages to npm.pkg.github.com
Publish stage  /  Publish nuget packages to nuget.pkg.github.com
Publish stage / Publish nuget packages to nuget.pkg.github.com
Matrix: Publish stage / publish-oas-specs
Waiting for pending jobs
Publish stage  /  Success notification
Publish stage / Success notification
Fit to window
Zoom out
Zoom in

Annotations

7 errors and 20 warnings
Test stage / Linting
Process completed with exit code 2.
Test stage / Linting: lambdas/upsert-letter/src/handler/__tests__/upsert-handler.test.ts#L377
Delete `⏎`
Test stage / Linting: lambdas/allocate-letter/src/handler/allocate-handler.ts#L14
Remove this unused import of 'de'
Test stage / Linting: lambdas/allocate-letter/src/handler/allocate-handler.ts#L14
'de' is defined but never used. Allowed unused vars must match /^_/u
Test stage / Linting: lambdas/allocate-letter/src/handler/allocate-handler.ts#L14
`zod/v4/locales` import should occur before import of `../config/deps`
Test stage / Linting: lambdas/allocate-letter/src/handler/allocate-handler.ts#L12
Remove this unused import of 'url'
Test stage / Linting: lambdas/allocate-letter/src/handler/allocate-handler.ts#L12
'url' is defined but never used. Allowed unused vars must match /^_/u
Test stage / Check generated dependencies
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Check generated dependencies
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Pact tests
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Pact tests
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Typecheck
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Typecheck
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Linting
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Linting: lambdas/api-handler/src/utils/__tests__/validation.test.ts#L74
Test has no assertions
Test stage / Linting: lambdas/api-handler/src/handlers/post-mi.ts#L3
Caution: `mi-operations.ts` has a default export `postMI`. This imports `postMI` as `postMIOperation`. Check if you meant to write `import postMI from '../services/mi-operations'` instead
Test stage / Linting: lambdas/api-handler/src/handlers/__tests__/utils/test-utils.ts#L3
Prefer default export on a file with single export
Test stage / Linting: lambdas/api-handler/src/handlers/__tests__/post-mi.test.ts#L7
Caution: `mi-operations.ts` has a default export `postMI`. This imports `postMI` as `postMiOperation`. Check if you meant to write `import postMI from '../../services/mi-operations'` instead
Test stage / Linting: lambdas/allocate-letter/src/index.ts#L2
Caution: `allocate-handler.ts` has a default export `createAllocatedLetterHandler`. This imports `createAllocatedLetterHandler` as `createAllocateLetterHandler`. Check if you meant to write `import createAllocatedLetterHandler from './handler/allocate-handler'` instead
Test stage / Linting: lambdas/allocate-letter/src/handler/allocate-handler.ts#L26
Generic Object Injection Sink
Test stage / Linting: internal/helpers/src/id-ref.ts#L54
Variable Assigned to Object Injection Sink
Test stage / Linting: internal/events/src/events/event-envelope.ts#L94
Found non-literal argument to RegExp Constructor
Test stage / Linting: internal/events/src/events/event-envelope.ts#L84
Unsafe Regular Expression
Test stage / Linting: internal/datastore/src/letter-repository.ts#L76
Variable Assigned to Object Injection Sink
Test stage / Linting
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Unit tests
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']
Test stage / Unit tests
Unexpected input(s) 'node-version', valid inputs are ['GITHUB_TOKEN']

Artifacts

Produced during runtime
Name Size Digest
code-coverage-report
3.65 KB
sha256:e836b000e2b885b722305313a18f3521fcd5e15124a439461629de93eaf41e39
lines-of-code-report.json.zip Expired
990 Bytes
sha256:6df7a6f3b4542ff2c7de1421e056862ff5b0fb67b2fa7346503efa7d49add160
sbom-repository-report.json.zip Expired
168 KB
sha256:7adfeeb732048aa54a4b31b03363134ace0fa12a4694b66c530b0233989ce737
unit-tests
733 KB
sha256:c28b8a1080dfb0f9610333bbc7092164b5ca609d3af7af6f0d8d4757ad2835b4
vulnerabilities-repository-report.json.zip Expired
3.38 KB
sha256:a39c2cba0614ced91140248a8ef6833ce91d956c5753e371ab3d2ad83ad12bcf