Skip to content

chore(actions): address zizmor findings#16228

Open
g-husam wants to merge 2 commits into
mainfrom
zizmor-cleanup
Open

chore(actions): address zizmor findings#16228
g-husam wants to merge 2 commits into
mainfrom
zizmor-cleanup

Conversation

@g-husam

@g-husam g-husam commented Jul 1, 2026

Copy link
Copy Markdown
Contributor

This PR is an auto-generated attempt to address zizmor findings. It may not catch everything, and should be reviewed by repository owners.

These changes were generated by running zizmor --fix=all --gh-token=$(gh auth token) ./.github/workflows, and then applying some fixes for any remaining issues reported by zizmor. See go/github-zizmor-help for instructions to install and run.

Additionally, it updates renovate configuration (if present) to extend best-practices, which includes pinning action digests and image digests, among other things.

If this PR is unhelpful, feel free to close the PR and address separately. If it is helpful, feel free to approve and merge, or edit/modify as needed to get it to the right state. Repository owners must ultimately ensure compliance by 2026-07-13. The purpose of this PR is to provide some assistance with achieving that as a first pass. This will become a blocking check for new changes to github workflows on 2026-07-13 within the googleapis org.

There may be some ignored findings (with the comment # zizmor: ignore[...]), which you may fix if feasible.

@product-auto-label product-auto-label Bot added the api: actions Issues related to the Google Actions API. label Jul 1, 2026

@gemini-code-assist gemini-code-assist Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates the Renovate configuration in .github/renovate.json to extend config:best-practices instead of config:base. There are no review comments, and I have no feedback to provide.

@g-husam g-husam marked this pull request as ready for review July 1, 2026 20:20
@g-husam g-husam requested a review from a team as a code owner July 1, 2026 20:20
@g-husam g-husam enabled auto-merge (squash) July 1, 2026 20:20
@g-husam g-husam disabled auto-merge July 1, 2026 20:20
@g-husam g-husam enabled auto-merge (squash) July 1, 2026 20:20
@codecov

codecov Bot commented Jul 1, 2026

Copy link
Copy Markdown

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.23%. Comparing base (559b727) to head (60ad8da).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files
@@           Coverage Diff           @@
##             main   #16228   +/-   ##
=======================================
  Coverage   92.23%   92.23%           
=======================================
  Files        2265     2265           
  Lines      210210   210210           
=======================================
+ Hits       193894   193896    +2     
+ Misses      16316    16314    -2     

☔ View full report in Codecov by Harness.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

api: actions Issues related to the Google Actions API.

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant