Skip to content

v0.6.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 16 Apr 17:39
· 174 commits to main since this release
Immutable release. Only release title and notes can be modified.
v0.6.0
100313c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

pinprick v0.6.0

What's New

  • detect unpinned git clone, cargo install, and gem install
  • detect package installs with trailing flags

Fixes

  • update rustls-webpki to 0.103.12 for RUSTSEC-2026-0098 and RUSTSEC-2026-0099
  • sort stable releases newer than pre-releases
  • anchor run-block line lookup at a monotonic cursor
  • guard rewrite_actions against duplicate line numbers
  • skip shell comment lines when scanning run blocks
  • retry on transient 5xx and sleep through short rate-limit waits
  • anchor find_run_line to an exact trimmed match when available

Under the Hood

  • read each workflow file once per scan

Documentation

  • explain why single-digit versions are rejected
  • bump required co-author trailer to Opus 4.7
  • document audit flags, configuration, and new detections

Full Changelog: v0.5.2...v0.6.0

Assets 6
Loading