Update KCL docs #185
modeling-app-github-app[bot]security-pr.yml Required
on: pull_request
semgrep-oss/scan
38s
zizmor
25s
Annotations
7 warnings
|
excessive-permissions:
.github/workflows/build.yml#L12
build.yml:12: overly broad permissions: default permissions used due to no permissions: block
|
|
artipacked:
.github/workflows/build.yml#L16
build.yml:16: credential persistence through GitHub Actions artifacts: does not set persist-credentials: false
|
|
secrets-outside-env:
.github/workflows/boop-website.yml#L19
boop-website.yml:19: secrets referenced without a dedicated environment: secret is accessed outside of a dedicated environment
|
|
secrets-outside-env:
.github/workflows/boop-website.yml#L18
boop-website.yml:18: secrets referenced without a dedicated environment: secret is accessed outside of a dedicated environment
|
|
excessive-permissions:
.github/workflows/boop-website.yml#L11
boop-website.yml:11: overly broad permissions: default permissions used due to no permissions: block
|
|
dependabot-cooldown:
.github/dependabot.yml#L7
dependabot.yml:7: insufficient cooldown in Dependabot updates: missing cooldown configuration
|
|
zizmor
No file matched to [/home/runner/work/documentation/documentation/**/*requirements*.txt,/home/runner/work/documentation/documentation/**/*requirements*.in,/home/runner/work/documentation/documentation/**/*constraints*.txt,/home/runner/work/documentation/documentation/**/*constraints*.in,/home/runner/work/documentation/documentation/**/pyproject.toml,/home/runner/work/documentation/documentation/**/uv.lock,/home/runner/work/documentation/documentation/**/*.py.lock]. The cache will never get invalidated. Make sure you have checked out the target repository and configured the cache-dependency-glob input correctly.
|