chore(deps): bump astral-sh/setup-uv from 25b3ce6330ae41c3f95bd2addaf55f4db2d4820a to 1f2cbfa7bb518f97c35c3cd1ac38271d6e45b512 in /.github/workflows #8
Workflow file for this run
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: GitHub Actions Security Analysis with zizmor 🌈 | |
| on: | |
| workflow_dispatch: | |
| push: | |
| branches: ["main"] | |
| pull_request: | |
| branches: ["*"] | |
| jobs: | |
| zizmor: | |
| name: zizmor latest via Cargo | |
| runs-on: ubuntu-latest | |
| permissions: | |
| contents: read | |
| security-events: write | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 | |
| with: | |
| persist-credentials: false | |
| - name: Install the latest version of uv | |
| uses: astral-sh/setup-uv@1f2cbfa7bb518f97c35c3cd1ac38271d6e45b512 | |
| with: | |
| enable-cache: false | |
| - name: Run zizmor 🌈 | |
| run: uvx zizmor -p --format sarif . > results.sarif | |
| env: | |
| GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} | |
| - name: Upload SARIF file | |
| uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae | |
| with: | |
| sarif_file: results.sarif | |
| category: zizmor |