Skip to content
Dependency review

Bump install-pinned/uv from 09493a8894e089d8b84f332d948a72bdd8fb3638 to 4bc58142f1f396d182fe55c6b422915175ad78f0 #1276

Sign in to view logs

Bump install-pinned/uv from 09493a8894e089d8b84f332d948a72bdd8fb3638 to 4bc58142f1f396d182fe55c6b422915175ad78f0

Bump install-pinned/uv from 09493a8894e089d8b84f332d948a72bdd8fb3638 to 4bc58142f1f396d182fe55c6b422915175ad78f0 #1276

Workflow file for this run

.github/workflows/dependency-review.yml at 9fe6577
name: Dependency review
on: [pull_request]
permissions: read-all
jobs:
dependency-review:
name: Dependency review
runs-on: ubuntu-latest
steps:
- uses: step-security/harden-runner@f4a75cfd619ee5ce8d5b864b0d183aff3c69b55a
with:
disable-sudo: true
egress-policy: block
allowed-endpoints: >
api.github.com:443
api.securityscorecards.dev:443
github.com:443
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
- uses: actions/dependency-review-action@56339e523c0409420f6c2c9a2f4292bbb3c07dd3
with:
allow-ghsas: GHSA-pq67-6m6q-mj2v # urllib3