Skip to content

chore(ci): address zizmor findings #1932

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 4 commits into from
Oct 30, 2025
Merged

chore(ci): address zizmor findings #1932

merged 4 commits into from
Oct 30, 2025
+34 −20

Conversation

@woodruffw
Copy link
Member

@woodruffw woodruffw commented Oct 17, 2025
edited
Loading

This is part 1 of N.

The main focus in this PR is on unpinned references and inadvertent/unnecessary credential persistence, plus some template injections.

Note: This repo doesn't currently have Dependabot configured for automatic GHA bumps, but I could add that as well 🙂.

📚 Documentation preview 📚: https://python-packaging-user-guide--1932.org.readthedocs.build/en/1932/

@woodruffw
chore(ci): address zizmor findings
db0ef80 
This is part 1 of N. The main focus in this PR
is on unpinned references and inadvertent/unnecessary
credential persistence.

Signed-off-by: William Woodruff <[email protected]>
@woodruffw woodruffw requested a review from webknjaz October 17, 2025 01:33
@woodruffw woodruffw self-assigned this Oct 17, 2025
@woodruffw
Copy link
Member Author

Ping @webknjaz for review 🙂

ncoghlan
ncoghlan approved these changes Oct 30, 2025
View reviewed changes
Copy link
Member

@ncoghlan ncoghlan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

@ncoghlan ncoghlan added this pull request to the merge queue Oct 30, 2025
Merged via the queue into main with commit c3247ac Oct 30, 2025
10 checks passed
@ncoghlan ncoghlan deleted the ww/zizmor-fixes branch October 30, 2025 01:35
@webknjaz
Copy link
Member

sorry i never got to this.. thanks!

webknjaz
webknjaz reviewed Oct 30, 2025
View reviewed changes
.github/workflows/zizmor.yml
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@woodruffw can we dogfood the reusable workflow when you get to working on this next time?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@webknjaz webknjaz webknjaz left review comments

@ncoghlan ncoghlan ncoghlan approved these changes

Assignees

@woodruffw woodruffw

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@woodruffw @webknjaz @ncoghlan