chore(deps): bump zizmorcore/zizmor-action from 0.5.3 to 0.5.7 #68
security.yml
on: pull_request
Dependency review
7s
zizmor
7s
Annotations
2 errors and 11 warnings
|
zizmor
Process completed with exit code 14.
|
|
cache-poisoning:
.github/workflows/build-docs.yaml#L30
build-docs.yaml:30: runtime artifacts potentially vulnerable to a cache poisoning attack: enables caching by default
|
|
Dependency review
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: actions/dependency-review-action@2031cfc080254a8a887f58cffee85186f0e49e48. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
ref-version-mismatch:
.github/workflows/security.yml#L50
security.yml:50: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/security.yml#L36
security.yml:36: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/release.yml#L239
release.yml:239: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/release.yml#L181
release.yml:181: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/release.yml#L109
release.yml:109: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/release.yml#L27
release.yml:27: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/ci.yml#L105
ci.yml:105: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/ci.yml#L62
ci.yml:62: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/ci.yml#L27
ci.yml:27: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|
|
ref-version-mismatch:
.github/workflows/build-docs.yaml#L22
build-docs.yaml:22: action's hash pin has mismatched or missing version comment: points to commit df4cb1c069e1
|