Marcono1234
|
d55fb35ff3
|
doc: mention insta --force-update-snapshots (#728)
|
2025-04-30 21:53:58 +00:00 |
|
Marcono1234
|
5c09c20cc9
|
chore: remove duplicate context (#729)
|
2025-04-30 21:08:06 +00:00 |
|
William Woodruff
|
4921e0029b
|
chore(docs): bump trophies (#727)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-30 17:47:50 +00:00 |
|
William Woodruff
|
0cec95b08c
|
chore(deps): cargo update (#722)
|
2025-04-30 04:53:56 +00:00 |
|
William Woodruff
|
f55d31db7e
|
chore(ci): fix makefile target (#721)
|
2025-04-30 04:46:26 +00:00 |
|
William Woodruff
|
403df8a84c
|
chore(ci): add refresh-schemas workflow (#720)
|
2025-04-30 04:43:33 +00:00 |
|
William Woodruff
|
d5c3bcdeb3
|
feat: more informative error message (#719)
Co-authored-by: reandreev <58111850+reandreev@users.noreply.github.com>
|
2025-04-30 00:38:44 -04:00 |
|
Marcono1234
|
ebca08dd02
|
feat: new audit: stale-action-refs (#713)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-04-30 03:07:37 +00:00 |
|
William Woodruff
|
d1ff64357b
|
chore(docs): bump trophies (#717)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-30 02:59:10 +00:00 |
|
Marcono1234
|
68e76111f7
|
test: update snapshot expressions (#716)
|
2025-04-29 16:36:08 +00:00 |
|
William Woodruff
|
cf4918f6a7
|
chore(docs): bump trophies (#715)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-29 16:23:47 +00:00 |
|
William Woodruff
|
c0cccc22de
|
chore(docs): bump trophies (#712)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-29 15:08:18 +00:00 |
|
William Woodruff
|
27f820c7b9
|
bugfix: sarif: prefix ID, add rule names (#710)
|
2025-04-29 10:29:16 -04:00 |
|
William Woodruff
|
9cd012b752
|
chore(docs): bump trophies (#708)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-29 02:41:23 +00:00 |
|
William Woodruff
|
ac7db15708
|
chore: models: remove pub(crate) from some fields (#707)
|
2025-04-29 02:37:17 +00:00 |
|
Marcono1234
|
7bde403f96
|
feat: further reduce step handling code duplication (#703)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-04-29 02:32:50 +00:00 |
|
William Woodruff
|
f8ed4fee2b
|
chore(docs): bump trophies (#706)
|
2025-04-28 22:42:24 +00:00 |
|
William Woodruff
|
fd8bd06b2c
|
chore(docs): hash-pin setup-uv in usage.md (#705)
|
2025-04-28 21:25:57 +00:00 |
|
dependabot[bot]
|
77f1082b1e
|
chore(deps): bump insta from 1.42.2 to 1.43.0 in the cargo group (#702)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-04-28 12:41:39 -04:00 |
|
Marcono1234
|
837491f5ce
|
bugfix: fix e2e test failures on Windows (#696)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-04-28 15:13:03 +00:00 |
|
Marcono1234
|
9705382ba1
|
feat: reduce code duplication for workflow step handling (#697)
|
2025-04-28 11:10:45 -04:00 |
|
dependabot[bot]
|
22fd0c3435
|
chore(deps): bump the github-actions group with 4 updates (#701)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-04-28 11:08:04 -04:00 |
|
William Woodruff
|
d3b7eb86c1
|
chore(docs): update trophies (#700)
|
2025-04-27 23:27:19 +00:00 |
|
William Woodruff
|
b3094b1d2e
|
chore(docs): update trophies (#699)
|
2025-04-27 21:43:29 +00:00 |
|
Marcono1234
|
d9d91795cb
|
tests: check zizmor exit code (#698)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-04-27 15:55:34 +00:00 |
|
William Woodruff
|
ee6f160a30
|
chore: github_api: deduplicate resp handling (#695)
|
2025-04-25 14:35:52 +00:00 |
|
William Woodruff
|
bc35a413e6
|
chore(docs): bump trophies (#694)
|
2025-04-24 18:37:04 +00:00 |
|
William Woodruff
|
20552e68c1
|
feat: github_api: improve 403 errors slightly (#693)
|
2025-04-24 14:31:38 -04:00 |
|
Marcono1234
|
1514afd84e
|
docs: extend remediation for dangerous-triggers (#692)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-04-24 17:37:55 +00:00 |
|
William Woodruff
|
e0dfef80fe
|
feat: new audit: obfuscation (#683)
|
2025-04-23 21:32:48 +00:00 |
|
Marcono1234
|
2c1c91ce65
|
docs: recommend GitHubSecurityLab/actions-permissions (#688)
Co-authored-by: William Woodruff <william@yossarian.net>
|
2025-04-23 18:54:23 +00:00 |
|
William Woodruff
|
7b4e76e94b
|
chore(docs): clarify default rule in explicit config (#687)
|
2025-04-22 16:04:25 +00:00 |
|
dependabot[bot]
|
1b8b5d2613
|
chore(deps): bump the cargo group with 2 updates (#686)
|
2025-04-21 10:30:50 -04:00 |
|
dependabot[bot]
|
7e726e1eab
|
chore(deps): bump astral-sh/setup-uv in the github-actions group (#685)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-04-21 13:58:53 +00:00 |
|
William Woodruff
|
fb0e31e3c2
|
docs: bump trophies (#682)
|
2025-04-19 22:24:40 -04:00 |
|
William Woodruff
|
fb8520bdd5
|
chore: prep for release 1.6.0 (#681)
|
2025-04-19 22:13:28 -04:00 |
|
William Woodruff
|
9689f0e5fe
|
chore: bump github-actions-models to 0.28.1 (#679)
|
2025-04-18 15:35:30 -04:00 |
|
William Woodruff
|
d922717d80
|
feat: generalize RepositoryUsesPattern (#670)
|
2025-04-16 23:29:26 -04:00 |
|
William Woodruff
|
db3072104c
|
bugfix: template-injection: mark another context as safe (#675)
|
2025-04-16 19:02:27 +00:00 |
|
William Woodruff
|
07d2c2401d
|
docs: bump trophies (#671)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-15 21:53:38 +00:00 |
|
William Woodruff
|
8b23a9e577
|
feat: new audit: forbidden-uses (#664)
Co-authored-by: Jan Holthuis <jan.holthuis@ruhr-uni-bochum.de>
|
2025-04-14 21:13:49 -04:00 |
|
William Woodruff
|
c4600e99fd
|
chore(docs): bump trophies (#668)
|
2025-04-14 19:41:18 +00:00 |
|
Mark Esler
|
a32d8bde36
|
ci: convert Dockerfile to Wolfi (#667)
|
2025-04-14 19:09:48 +00:00 |
|
dependabot[bot]
|
aeef8f6ebf
|
chore(deps): bump the github-actions group with 2 updates (#665)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-04-14 10:02:10 -04:00 |
|
dependabot[bot]
|
957f02e481
|
chore(deps): bump the cargo group with 4 updates (#666)
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
|
2025-04-14 10:01:13 -04:00 |
|
William Woodruff
|
83297264aa
|
feat: rewrite unpinned-uses, fold in forbidden-uses (#663)
Co-authored-by: Jan Holthuis <jan.holthuis@ruhr-uni-bochum.de>
|
2025-04-13 16:00:55 -04:00 |
|
William Woodruff
|
14f9bbebb3
|
bugfix: github.job is not a template injection risk (#661)
|
2025-04-10 20:12:54 +00:00 |
|
William Woodruff
|
9b1ec923be
|
bugfix: bump yamlpath, fix #659 (#660)
|
2025-04-10 11:15:38 -04:00 |
|
William Woodruff
|
d2fa211efc
|
ci: pypi: bump to macos-15 (#618)
Signed-off-by: William Woodruff <william@yossarian.net>
|
2025-04-08 10:54:59 -04:00 |
|
William Woodruff
|
5ebba3e220
|
feat: add JSON format versioning (#657)
* feat: add JSON format versioning
* docs: bump snippets, add PR
|
2025-04-07 20:18:50 -04:00 |
|