Skip to content

chore: security update for Github actions usages#589

Closed
linz-security-automation[bot] wants to merge 1 commit into
masterfrom
chore/security-gha-scan-update
Closed

chore: security update for Github actions usages#589
linz-security-automation[bot] wants to merge 1 commit into
masterfrom
chore/security-gha-scan-update

Conversation

@linz-security-automation

Copy link
Copy Markdown

This pull request is opened automatically by linz/security-gha-scan to ensure that the usage of Github Actions meets LINZ security requirements.

specifically:

  • 3rd party actions (anything other than linz/*) are pinned with commit SHA
  • dependabot is used to keep Github action up to date
    • unverified actions are configured to not auto update
    • cooldown period configured (to 15 days unless repo already has a different config)

Please review and merge it as soon as possible, contact #team-step-security or #team-step-enablement if you have any question.

@linz-security-automation linz-security-automation Bot requested a review from a team as a code owner July 6, 2026 21:49
@linz-security-automation linz-security-automation Bot requested review from Wentao-Kuang and tawera-manaena and removed request for a team July 6, 2026 21:49
@bharathcp

Copy link
Copy Markdown

Closing automated security GHA update PR.

@bharathcp bharathcp closed this Jul 6, 2026
@bharathcp bharathcp deleted the chore/security-gha-scan-update branch July 6, 2026 22:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants