ci: replace zizmor and cargo-deny with oxc-project/security-action#1635
ci: replace zizmor and cargo-deny with oxc-project/security-action#1635Boshen wants to merge 1 commit into
Conversation
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
✅ Deploy Preview for viteplus-preview canceled.
|
![chatgpt-codex-connector[bot]](https://avatars.githubusercontent.com/in/1144995?s=60&v=4){kind=small}
There was a problem hiding this comment.
💡 Codex Review
Here are some automated review suggestions for this pull request.
Reviewed commit: c1a81593cc
ℹ️ About Codex in GitHub
Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you
- Open a pull request for review
- Mark a draft as ready
- Comment "@codex review".
If Codex has suggestions, it will comment; otherwise it will react with 👍.
Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".
| paths: | ||
| - ".github/workflows/**" |
There was a problem hiding this comment.
This workflow now only runs on push when files under .github/workflows/** change, so dependency-security checks are skipped for direct pushes to main that modify Cargo.lock. The pinned oxc-project/security-action only runs cargo-deny when the workflow is invoked and Cargo.lock changed, so this path filter removes the previous post-push coverage that deny.yml had for lockfile updates.
Useful? React with 👍 / 👎.
1 participant
Summary
.github/workflows/zizmor.ymland.github/workflows/deny.ymlworkflowsdeny.tomlconfiguration.github/workflows/security.ymlusingoxc-project/security-action@v1.0.5🤖 Generated with Claude Code