Skip to content

add zizmor & trivy update#1560

Open
rbanka1 wants to merge 1 commit intooneapi-src:mainfrom
rbanka1:zizmor
Open

add zizmor & trivy update#1560
rbanka1 wants to merge 1 commit intooneapi-src:mainfrom
rbanka1:zizmor

Conversation

@rbanka1
Copy link
Contributor

@rbanka1 rbanka1 commented Mar 6, 2026
edited
Loading

  • added zizmor analysis
  • updated trivy to secure version

@rbanka1 rbanka1 requested a review from a team as a code owner March 6, 2026 14:07
@github-advanced-security
Copy link

github-advanced-security bot commented Mar 6, 2026

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.

github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 6, 2026
View reviewed changes
github-advanced-security[bot]
github-advanced-security bot found potential problems Mar 6, 2026
View reviewed changes
.github/workflows/zizmor.yml
Comment on lines +21 to +26
- name: Checkout repository
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
with:
sparse-checkout-cone-mode: false
sparse-checkout: |
.github/workflows/*.yml

Check warning

Code scanning / zizmor

credential persistence through GitHub Actions artifacts Warning

credential persistence through GitHub Actions artifacts
Copy link
Collaborator

@lukaszstolarczuk lukaszstolarczuk Mar 6, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

zizmor issues should be fixed :)

lukaszstolarczuk
lukaszstolarczuk reviewed Mar 6, 2026
View reviewed changes
Copy link
Collaborator

@lukaszstolarczuk lukaszstolarczuk left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

👍

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lukaszstolarczuk lukaszstolarczuk lukaszstolarczuk left review comments

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rbanka1 @lukaszstolarczuk