Conversation
|
This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation. |
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| @@ -0,0 +1,113 @@ | |||
| # Configuration from: | |||
Check notice
Code scanning / poutine
Github Action from Unverified Creator used Note
|
|
||
| - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 | ||
| - name: Check workflow files | ||
| run: | |
Check notice
Code scanning / poutine
Unverified Script Execution Note
| with: | ||
| egress-policy: audit | ||
|
|
||
| - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 |
Check warning
Code scanning / zizmor
credential persistence through GitHub Actions artifacts Warning
| with: | ||
| egress-policy: audit | ||
|
|
||
| - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 |
Check warning
Code scanning / zizmor
credential persistence through GitHub Actions artifacts Warning
| permissions: {} | ||
|
|
||
| jobs: | ||
| actionlint: |
Check notice
Code scanning / zizmor
workflow or action definition without a name Note
ondrejmirtes
force-pushed
the
lint-workflows
branch
from
ad57a52 to
1e15ed9
Compare
| working-directory: "issue-bot" | ||
| run: | | ||
| echo "shards=$(jq -c '{include: [range(length) | {shard: .}]}' matrix.json)" >> $GITHUB_OUTPUT | ||
| echo "shards=$(jq -c '{include: [range(length) | {shard: .}]}' matrix.json)" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
| - name: "Save checksum" | ||
| id: "checksum" | ||
| run: echo "md5=$(md5sum tmp/phpstan.phar | cut -d' ' -f1)" >> $GITHUB_OUTPUT | ||
| run: echo "md5=$(md5sum tmp/phpstan.phar | cut -d' ' -f1)" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
| - name: "Save old checksum" | ||
| id: "old_checksum" | ||
| run: echo "md5=$(md5sum phpstan.phar | cut -d' ' -f1)" >> $GITHUB_OUTPUT | ||
| run: echo "md5=$(md5sum phpstan.phar | cut -d' ' -f1)" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
| id: previous-commit | ||
| working-directory: phpstan-dist | ||
| run: echo "sha=$(sed -n '2p' .phar-checksum)" >> $GITHUB_OUTPUT | ||
| run: echo "sha=$(sed -n '2p' .phar-checksum)" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
| echo "log<<MESSAGE" >> $GITHUB_OUTPUT | ||
| echo "$(git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s')" >> $GITHUB_OUTPUT | ||
| echo 'MESSAGE' >> $GITHUB_OUTPUT | ||
| echo "log<<MESSAGE" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
| working-directory: phpstan-dist | ||
| run: | | ||
| checksum=${{needs.compiler-tests.outputs.checksum}} | ||
| checksum="${{needs.compiler-tests.outputs.checksum}}" |
Check failure
Code scanning / octoscan
Expression injection, "needs..outputs." is potentially untrusted. Error
| checksum="${{needs.compiler-tests.outputs.checksum}}" | ||
| if [[ $(head -n 1 .phar-checksum) != "$checksum" ]]; then | ||
| echo "result=different" >> $GITHUB_OUTPUT | ||
| echo "result=different" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
| echo "result=different" >> "$GITHUB_OUTPUT" | ||
| else | ||
| echo "result=same" >> $GITHUB_OUTPUT | ||
| echo "result=same" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error
|
|
||
| - id: set-matrix | ||
| run: echo "matrix=$(php .github/workflows/tests-levels-matrix.php)" >> $GITHUB_OUTPUT | ||
| run: echo "matrix=$(php .github/workflows/tests-levels-matrix.php)" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error test
| id: default-branch | ||
| run: | | ||
| echo "name=$(git remote show origin | sed -n '/HEAD branch/s/.*: //p')" >> $GITHUB_OUTPUT | ||
| echo "name=$(git remote show origin | sed -n '/HEAD branch/s/.*: //p')" >> "$GITHUB_OUTPUT" |
Check failure
Code scanning / octoscan
Write to "$GITHUB_OUTPUT" in a bash script. Error test
| echo "$(git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s')" >> $GITHUB_OUTPUT | ||
| echo 'MESSAGE' >> $GITHUB_OUTPUT | ||
| echo "log<<MESSAGE" >> "$GITHUB_OUTPUT" | ||
| git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s' >> "$GITHUB_OUTPUT" |
Check warning
Code scanning / zizmor
code injection via template expansion Warning
| echo "$(git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s')" >> $GITHUB_OUTPUT | ||
| echo 'MESSAGE' >> $GITHUB_OUTPUT | ||
| echo "log<<MESSAGE" >> "$GITHUB_OUTPUT" | ||
| git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s' >> "$GITHUB_OUTPUT" |
Check warning
Code scanning / zizmor
code injection via template expansion Warning
| working-directory: phpstan-dist | ||
| run: | | ||
| checksum=${{needs.compiler-tests.outputs.checksum}} | ||
| checksum="${{needs.compiler-tests.outputs.checksum}}" |
Check warning
Code scanning / zizmor
code injection via template expansion Warning
| echo "$(git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s')" >> $GITHUB_OUTPUT | ||
| echo 'MESSAGE' >> $GITHUB_OUTPUT | ||
| echo "log<<MESSAGE" >> "$GITHUB_OUTPUT" | ||
| git log ${{ steps.previous-commit.outputs.sha }}..${{ github.event.after }} --reverse --pretty='https://github.com/phpstan/phpstan-src/commit/%H %s' >> "$GITHUB_OUTPUT" |
Check notice
Code scanning / zizmor
code injection via template expansion Note
| working-directory: phpstan-dist | ||
| run: | | ||
| checksum=${{needs.compiler-tests.outputs.checksum}} | ||
| checksum="${{needs.compiler-tests.outputs.checksum}}" |
Check notice
Code scanning / zizmor
code injection via template expansion Note
1 participant
No description provided.