Lint

More quotes. #100

Workflow file for this run

	# yaml-language-server: $schema=https://json.schemastore.org/github-workflow

	name: Lint
	on:
	pull_request:
	paths:
	# Only run when changes are made to workflow files.
	- '.github/workflows/**'
	push:
	branches:
	- trunk
	paths:
	# Only run when changes are made to workflow files.
	- '.github/workflows/**'

	permissions: {}

	concurrency:
	group: ${{ github.workflow }}-${{ github.ref }}
	cancel-in-progress: true

	jobs:
	actionlint:
	name: Actionlint
	runs-on: ubuntu-24.04
	permissions:
	contents: read
	timeout-minutes: 1
	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	- name: Run actionlint
	uses: docker://rhysd/actionlint:latest
	with:
	args: "-color -verbose -shellcheck="

	octoscan:
	name: Octoscan
	runs-on: ubuntu-24.04
	permissions:
	security-events: write
	actions: read
	contents: read
	timeout-minutes: 10
	steps:
	- name: Checkout code
	uses: actions/checkout@v4

	- name: Run octoscan
	id: octoscan
	uses: synacktiv/action-octoscan@v1
	with:
	filter_triggers: ''

	- name: Upload SARIF file to GitHub
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: "${{steps.octoscan.outputs.sarif_output}}"
	category: octoscan

	zizmor:
	name: Zizmor
	runs-on: ubuntu-24.04
	permissions:
	security-events: write
	actions: read
	contents: read
	steps:
	- name: Checkout repository
	uses: actions/checkout@v4
	with:
	persist-credentials: false

	- name: Install the latest version of uv
	uses: astral-sh/setup-uv@v4

	- name: Run zizmor 🌈
	run: uvx zizmor --format sarif . > results.sarif
	env:
	GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

	- name: Upload SARIF file
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: results.sarif
	category: zizmor

	poutine:
	name: Poutine
	runs-on: ubuntu-24.04
	permissions:
	security-events: write
	contents: read
	steps:
	- name: Checkout repository
	uses: actions/checkout@v4

	- name: Run Poutine
	uses: boostsecurityio/poutine-action@v0.15.2

	- name: Upload poutine SARIF file
	uses: github/codeql-action/upload-sarif@v3
	with:
	sarif_file: results.sarif
	category: poutine

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

More quotes. #100

Workflow file

More quotes. #100

Jobs

Run details

Workflow file for this run