github.com/anchore/syft@v1.38.2/.github/zizmor.yml (about)

     1  rules:
     2    unpinned-uses:
     3      ignore:
     4        # Allow unpinned uses of trusted internal anchore/workflows actions
     5        - update-anchore-dependencies.yml
     6  
     7    dangerous-triggers:
     8      ignore:
     9        # Safe use of pull_request_target - only runs trusted scripts from base repo,
    10        # never checks out PR code, needs secrets for labeling PRs from forks
    11        - detect-schema-changes.yaml