Skip to content
GitHub Actions Security Analysis with zizmor

deps: Bump actions/dependency-review-action from 4.8.0 to 4.8.1 #204

Sign in to view logs

deps: Bump actions/dependency-review-action from 4.8.0 to 4.8.1

deps: Bump actions/dependency-review-action from 4.8.0 to 4.8.1 #204

Workflow file for this run

.github/workflows/zizmor.yml at 2f39777
name: GitHub Actions Security Analysis with zizmor
on:
push:
branches: ["main"]
pull_request:
permissions: {}
concurrency:
group: ${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
cancel-in-progress: true
jobs:
zizmor:
name: zizmor latest via uv
runs-on: ubuntu-latest
permissions:
security-events: write
steps:
- name: Harden Runner
uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a # v2.13.1
with:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
api.github.com:443
ghcr.io:443
github.com:443
pkg-containers.githubusercontent.com:443
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
with:
persist-credentials: false
- uses: zizmorcore/zizmor-action@e673c3917a1aef3c65c972347ed84ccd013ecda4 # v0.2.0
with:
persona: pedantic