Skip to content

DEVOPS-977: use v3 of zizmor github workflows#55

Open
andrewg-mira wants to merge 1 commit intodevelopfrom
DEVOPS-977-zizmor-patch
Open

DEVOPS-977: use v3 of zizmor github workflows#55
andrewg-mira wants to merge 1 commit intodevelopfrom
DEVOPS-977-zizmor-patch

Conversation

@andrewg-mira
Copy link
Contributor

@andrewg-mira andrewg-mira commented Mar 20, 2026
edited by github-actions bot
Loading

DEVOPS-977 - Zizmor: Allow trusted tag-pinned github actions

Copilot AI review requested due to automatic review settings March 20, 2026 20:49
@github-actions github-actions bot changed the title DEVOPS-977 use v3 of zizmor github workflows DEVOPS-977: use v3 of zizmor github workflows Mar 20, 2026
Copilot AI reviewed Mar 20, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates the GitHub Actions workflows to use version 3 of the zizmor-based security scanning workflows from the shared MiraGeoscience CI-tools repository. The changes are part of DEVOPS-977 and represent a straightforward dependency version upgrade for security scanning automation.

Changes:

  • Updated reusable-zizmor-advanced-security.yml from v2 to v3
  • Updated reusable-zizmor-annotate.yml from v2 to v3

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@andrewg-mira