This repository was archived by the owner on Jan 22, 2026. It is now read-only.

Add security policy document for reporting vulnerabilities #5

	name: GitHub Actions Security Analysis

	on:
	push:
	branches: ["main"]
	pull_request:
	branches: ["**"]

	permissions: {}

	concurrency:
	group: ${{ github.workflow }}-${{ github.ref }}
	cancel-in-progress: true

	jobs:
	zizmor:
	name: zizmor
	runs-on: ubuntu-latest
	permissions:
	security-events: write # upload SARIF results
	contents: read # checkout repository
	actions: read # query workflow runs
	steps:
	- name: Checkout repository
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
	with:
	persist-credentials: false

	- name: Run zizmor
	uses: zizmorcore/zizmor-action@6ef14ad7cd47dc49f8df59d6f8f6c1929af29568

Provide feedback