File: zizmor.yml

package info (click to toggle)
python-tornado 6.5.4-0.1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 3,208 kB
  • sloc: python: 28,773; javascript: 156; sh: 100; ansic: 72; makefile: 49; xml: 49; sql: 23
file content (14 lines) | stat: -rw-r--r-- 482 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
 
rules:
  unpinned-uses:
    config:
      policies:
        # Allow trusted repositories to use ref-pinning instead of hash-pinning.
        #
        # Defaults, from 
        # https://github.com/woodruffw/zizmor/blob/7b4e76e94be2f4d7b455664ba5252b2b4458b91d/src/audit/unpinned_uses.rs#L172-L193
        actions/*: ref-pin
        github/*: ref-pin
        dependabot/*: ref-pin
        # Additional trusted repositories
        pypa/*: ref-pin
        astral-sh/setup-uv: ref-pin