Skip to content

chore: security update for Github actions usages#718

Open
linz-security-automation[bot] wants to merge 1 commit into
masterfrom
chore/security-gha-scan-update
Open

chore: security update for Github actions usages#718
linz-security-automation[bot] wants to merge 1 commit into
masterfrom
chore/security-gha-scan-update

Conversation

@linz-security-automation

Copy link
Copy Markdown

This pull request is opened automatically by linz/security-gha-scan to ensure that the usage of Github Actions meets LINZ security requirements.

specifically:

  • 3rd party actions (anything other than linz/*) are pinned with commit SHA
  • dependabot is used to keep Github action up to date
    • cooldown period configured (to 15 days unless repo already has a different config)

Please review and merge it as soon as possible, contact #team-step-security or #team-step-enablement if you have any question.

@linz-security-automation linz-security-automation Bot requested a review from a team as a code owner July 9, 2026 01:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant