chore(deps): bump the actions group with 2 updates · hyperpolymath/palimpsest-license@877e5f8

Triggered via pull request March 19, 2026 07:26

dependabot[bot]

opened #89

dependabot/github_actions/actions-7a277cab52

Status Failure

Total duration 8s

Artifacts –

security.yml

on: pull_request

Matrix: CodeQL Analysis

Annotations

5 errors

Dependency Review

The action actions/dependency-review-action@v4 is not allowed in hyperpolymath/palimpsest-license because all actions must be pinned to a full-length commit SHA.

CodeQL Analysis (rust)

The action github/codeql-action/autobuild@v4 is not allowed in hyperpolymath/palimpsest-license because all actions must be pinned to a full-length commit SHA.

CodeQL Analysis (python)

The action github/codeql-action/autobuild@v4 is not allowed in hyperpolymath/palimpsest-license because all actions must be pinned to a full-length commit SHA.

OpenSSF Scorecard

The action github/codeql-action/upload-sarif@v4 is not allowed in hyperpolymath/palimpsest-license because all actions must be pinned to a full-length commit SHA.

CodeQL Analysis (javascript)

The action github/codeql-action/autobuild@v4 is not allowed in hyperpolymath/palimpsest-license because all actions must be pinned to a full-length commit SHA.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the actions group with 2 updates #368

Summary

chore(deps): bump the actions group with 2 updates #368

Uh oh!

security.yml

Annotations