Skip to content
Security (PR)

Update api spec #11

Sign in to view logs

Update api spec

Update api spec #11

Triggered via pull request December 10, 2025 15:56
@zoo-github-actions-authzoo-github-actions-auth[bot]
synchronize #420
update-spec
Status Success
Total duration 31s
Artifacts

security-pr.yml Required

on: pull_request
semgrep-oss/scan
25s
semgrep-oss/scan
zizmor
12s
zizmor
Fit to window
Zoom out
Zoom in

Annotations

1 error and 8 warnings
cache-poisoning: .github/workflows/update-spec-for-docs.yml#L34
update-spec-for-docs.yml:34: runtime artifacts potentially vulnerable to a cache poisoning attack: opt-in for caching here
artipacked: .github/workflows/update-spec-for-docs.yml#L51
update-spec-for-docs.yml:51: credential persistence through GitHub Actions artifacts: does not set persist-credentials: false
artipacked: .github/workflows/update-spec-for-docs.yml#L32
update-spec-for-docs.yml:32: credential persistence through GitHub Actions artifacts: does not set persist-credentials: false
artipacked: .github/workflows/make-release.yml#L14
make-release.yml:14: credential persistence through GitHub Actions artifacts: does not set persist-credentials: false
artipacked: .github/workflows/install-matrix.yml#L19
install-matrix.yml:19: credential persistence through GitHub Actions artifacts: does not set persist-credentials: false
artipacked: .github/workflows/CI.yml#L12
CI.yml:12: credential persistence through GitHub Actions artifacts: does not set persist-credentials: false
dependabot-cooldown: .github/dependabot.yml#L35
dependabot.yml:35: insufficient cooldown in Dependabot updates: missing cooldown configuration
dependabot-cooldown: .github/dependabot.yml#L7
dependabot.yml:7: insufficient cooldown in Dependabot updates: missing cooldown configuration
zizmor
No file matched to [/home/runner/work/kittycad.ts/kittycad.ts/**/*requirements*.txt,/home/runner/work/kittycad.ts/kittycad.ts/**/*requirements*.in,/home/runner/work/kittycad.ts/kittycad.ts/**/*constraints*.txt,/home/runner/work/kittycad.ts/kittycad.ts/**/*constraints*.in,/home/runner/work/kittycad.ts/kittycad.ts/**/pyproject.toml,/home/runner/work/kittycad.ts/kittycad.ts/**/uv.lock,/home/runner/work/kittycad.ts/kittycad.ts/**/*.py.lock]. The cache will never get invalidated. Make sure you have checked out the target repository and configured the cache-dependency-glob input correctly.