Skip to content
OpenSSF Scorecard

fix: bump idna 3.11 -> 3.16 for CVE-2026-45409 (GHSA-65pc-fj4g-8rjx) … #128

Sign in to view logs

fix: bump idna 3.11 -> 3.16 for CVE-2026-45409 (GHSA-65pc-fj4g-8rjx) …

fix: bump idna 3.11 -> 3.16 for CVE-2026-45409 (GHSA-65pc-fj4g-8rjx) … #128

Workflow file for this run

.github/workflows/scorecard.yml at f33034f
name: OpenSSF Scorecard
on:
push:
branches: [main]
schedule:
# Run weekly on Sundays at 04:00 UTC
- cron: "0 4 * * 0"
permissions: read-all
jobs:
analysis:
name: Scorecard Analysis
runs-on: ubuntu-latest
permissions:
security-events: write
id-token: write
steps:
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
with:
persist-credentials: false
- name: Run OpenSSF Scorecard
uses: ossf/scorecard-action@4eaacf0543bb3f2c246792bd56e8cdeffafb205a # v2.4.3
with:
results_file: results.sarif
results_format: sarif
publish_results: true
- name: Upload SARIF results
uses: github/codeql-action/upload-sarif@95e58e9a2cdfd71adc6e0353d5c52f41a045d225 # v4
with:
sarif_file: results.sarif