William Woodruff
|
577e1bd903
|
chore(docs): bump trophies (#1108)
Benchmark baseline / Continuous Benchmarking with Bencher (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Test (push) Waiting to run
CI / Test site build (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Waiting to run
CI / All tests pass (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Release (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Waiting to run
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Waiting to run
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Waiting to run
|
2025-08-22 23:42:14 +00:00 |
|
William Woodruff
|
bd632920a4
|
chore(docs): make pinact (#1103)
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Has been cancelled
CI / Lint (push) Has been cancelled
Benchmark baseline / Continuous Benchmarking with Bencher (push) Has been cancelled
CI / Test (push) Has been cancelled
CI / Test site build (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Has been cancelled
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Has been cancelled
CI / All tests pass (push) Has been cancelled
zizmor wheel builds for PyPI 🐍 / Release (push) Has been cancelled
|
2025-08-21 11:07:07 -04:00 |
|
Narsimham Chelluri
|
803728e8d7
|
Document that json-v1 uses 0-based line numbers (#1105)
Benchmark baseline / Continuous Benchmarking with Bencher (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Test (push) Waiting to run
CI / Test site build (push) Waiting to run
CI / All tests pass (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Release (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Waiting to run
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Waiting to run
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Waiting to run
|
2025-08-20 14:18:35 +00:00 |
|
Ben Cotton
|
a8ddc6926c
|
Fix a broken link to exit codes (#1106)
|
2025-08-20 10:13:22 -04:00 |
|
William Woodruff
|
cd69122630
|
chore(docs): bump trophies (#1104)
Benchmark baseline / Continuous Benchmarking with Bencher (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Test (push) Waiting to run
CI / Test site build (push) Waiting to run
CI / All tests pass (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Release (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Waiting to run
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Waiting to run
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Waiting to run
|
2025-08-20 06:14:40 +00:00 |
|
William Woodruff
|
9f9febd5bc
|
chore(docs): bump trophies (#1102)
Benchmark baseline / Continuous Benchmarking with Bencher (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Test (push) Waiting to run
CI / Test site build (push) Waiting to run
CI / All tests pass (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Release (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Waiting to run
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Waiting to run
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Waiting to run
|
2025-08-19 23:31:04 +00:00 |
|
dependabot[bot]
|
6e51f33223
|
chore(deps): bump the cargo group with 6 updates (#1097)
Benchmark baseline / Continuous Benchmarking with Bencher (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Test (push) Waiting to run
CI / Test site build (push) Waiting to run
CI / All tests pass (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Release (push) Blocked by required conditions
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Waiting to run
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Waiting to run
|
2025-08-19 07:59:10 -04:00 |
|
dependabot[bot]
|
bf4bf9e0ae
|
chore(deps): bump the github-actions group with 6 updates (#1096)
Benchmark baseline / Continuous Benchmarking with Bencher (push) Waiting to run
CI / Lint (push) Waiting to run
CI / Test (push) Waiting to run
CI / Test site build (push) Waiting to run
CI / All tests pass (push) Blocked by required conditions
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (manylinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Linux wheels (musllinux) (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build Windows wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build macOS wheels (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Build source distribution (push) Waiting to run
zizmor wheel builds for PyPI 🐍 / Release (push) Blocked by required conditions
Deploy zizmor documentation site 🌐 / Deploy zizmor documentation to GitHub Pages 🌐 (push) Waiting to run
GitHub Actions Security Analysis with zizmor 🌈 / Run zizmor 🌈 (push) Waiting to run
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-08-18 14:59:00 -04:00 |
|
William Woodruff
|
9d6aa92a77
|
refactor: add groups to the input registry (#1092)
|
2025-08-17 15:42:15 -04:00 |
|
William Woodruff
|
860e44b2a9
|
chore(docs): bump trophies (#1093)
|
2025-08-17 06:53:14 +00:00 |
|
William Woodruff
|
9e1b115128
|
refactor: give input registry APIs their own mod (#1091)
|
2025-08-16 19:18:45 -04:00 |
|
Juliette de Rancourt
|
c8657a264e
|
Document that composite action findings can be ignored with comments (#1087)
|
2025-08-16 16:32:29 +00:00 |
|
William Woodruff
|
1e3e559655
|
chore(ci): bump wolfi update check frequency (#1084)
|
2025-08-15 00:34:04 -04:00 |
|
William Woodruff
|
dbc12d4a21
|
chore: prep release v1.12.1 (#1083)
|
2025-08-15 00:27:09 -04:00 |
|
William Woodruff
|
311392251d
|
fix: flip setup-uv coordinate toggle (#1082)
|
2025-08-15 00:20:56 -04:00 |
|
William Woodruff
|
703e9d91bd
|
fix(ci): fix release-binaries workflow (#1079)
|
2025-08-13 19:58:44 -04:00 |
|
William Woodruff
|
ad779b7637
|
chore: bump MSRV (#1076)
|
2025-08-13 09:48:06 -04:00 |
|
William Woodruff
|
6c13403922
|
chore: fix warnings in latest Rust (#1075)
|
2025-08-13 13:36:47 +00:00 |
|
William Woodruff
|
982be2397b
|
chore: prep for release v1.12.0 (#1073)
|
2025-08-13 09:18:57 -04:00 |
|
William Woodruff
|
d306c4acb9
|
chore: bump github-actions-expressions to 0.0.9 (#1074)
|
2025-08-13 13:11:45 +00:00 |
|
dependabot[bot]
|
42b0346d8a
|
chore(deps): bump the github-actions group with 6 updates (#1071)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-08-11 18:16:53 -04:00 |
|
dependabot[bot]
|
9f7bcae00a
|
chore(deps): bump the cargo group with 7 updates (#1072)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-08-11 18:14:50 -04:00 |
|
William Woodruff
|
2b036da847
|
chore(docs): fix indentation in workflow samples (#1068)
|
2025-08-11 03:30:36 +00:00 |
|
William Woodruff
|
d47ec59e35
|
chore: improve issues templates (#1066)
|
2025-08-09 02:12:16 -04:00 |
|
Mostafa Moradian
|
ea59c810f8
|
Detect shell before applying template expression fixes (#1064)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-08-09 01:54:19 -04:00 |
|
William Woodruff
|
4313ab39d3
|
fix: fix overcorrected env patch for template-injection (#1061)
|
2025-08-05 23:59:46 -04:00 |
|
William Woodruff
|
c7d3a15f22
|
chore(docs): bump trophies (#1060)
|
2025-08-05 23:00:46 +00:00 |
|
William Woodruff
|
053af120a2
|
feat: another template injection sink (#1059)
|
2025-08-04 18:58:17 -04:00 |
|
github-actions[bot]
|
8313c33d93
|
[BOT] update JSON schemas from SchemaStore (#1057)
Co-authored-by: woodruffw <3059210+woodruffw@users.noreply.github.com>
|
2025-08-04 18:42:36 -04:00 |
|
William Woodruff
|
cf0abd3da0
|
chore: add TODO (#1056)
|
2025-08-04 03:59:57 +00:00 |
|
William Woodruff
|
d2ce23ea41
|
chore(docs): bump sponsors, trophies (#1054)
|
2025-08-03 01:57:58 +00:00 |
|
William Woodruff
|
e4d66d00e6
|
feat: new audit: unsound-condition (#1053)
|
2025-08-02 21:51:30 -04:00 |
|
William Woodruff
|
5ed8247ffb
|
chore(ci): disable benchmarking for PRs with 'no-benchmark' label (#1051)
|
2025-07-31 19:51:21 -04:00 |
|
William Woodruff
|
acd227abd6
|
chore(docs): improve the dev docs a bit (#1050)
* chore(docs): update some dev instructions
* chore(docs): document the benchmarking components
|
2025-07-31 23:38:10 +00:00 |
|
Mostafa Moradian
|
0dcd6eba53
|
Add Fix for insecure-commands audit rule (#1045)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-07-31 19:25:26 -04:00 |
|
William Woodruff
|
b8e2a7f3df
|
chore(docs): bump trophies, update links (#1047)
|
2025-07-31 22:54:31 +00:00 |
|
William Woodruff
|
ff37f5d0f5
|
chore(docs): bump trophies (#1046)
|
2025-07-31 01:16:51 +00:00 |
|
William Woodruff
|
b367c02ccf
|
feat: support crates.io in use-trusted-publishing (#1042)
|
2025-07-29 01:08:24 -04:00 |
|
William Woodruff
|
6b01af8c8f
|
refactor: remove RwLock from github-env audit (#1041)
|
2025-07-24 22:57:51 -04:00 |
|
William Woodruff
|
ad897039b4
|
ci: add some TODOs (#1040)
|
2025-07-24 20:27:00 -04:00 |
|
William Woodruff
|
349cbcdd26
|
feat: CLI benchmarking harness (#1038)
|
2025-07-24 20:13:35 -04:00 |
|
William Woodruff
|
14961ac826
|
refactor: generalize use-trusted-publishing audit (#1037)
|
2025-07-23 00:14:18 -04:00 |
|
William Woodruff
|
aa7425c927
|
refactor: isolate json-v1 output format (#1036)
|
2025-07-22 22:04:53 -04:00 |
|
dependabot[bot]
|
b2885d3ae3
|
chore(deps): bump the github-actions group with 2 updates (#1035)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-07-21 18:30:15 -04:00 |
|
dependabot[bot]
|
a738cd606c
|
chore(deps): bump the cargo group with 2 updates (#1034)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-07-21 11:08:57 -04:00 |
|
Mostafa Moradian
|
558bec2669
|
Add Fix for known-vulnerable-actions audit rule (#1019)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-07-20 21:08:14 -04:00 |
|
William Woodruff
|
d01fd3ab3f
|
chore(docs): bump trophies (#1032)
|
2025-07-20 23:01:26 +00:00 |
|
William Woodruff
|
bb4cd6b582
|
chore: remove unused imports in tests (#1031)
|
2025-07-17 02:12:29 +00:00 |
|
William Woodruff
|
353b4017cb
|
refactor: add subfeature crate (#1030)
|
2025-07-17 02:08:29 +00:00 |
|
Andrea Jemmett
|
b87e2d3862
|
bugfix: sanitize gh_token & avoid panic (#1027)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-07-15 22:19:25 +00:00 |
|