build(deps): bump super-linter/super-linter from 8.5.0 to 8.6.0

[dependabot]

Bumps super-linter/super-linter from 8.5.0 to 8.6.0.

Release notes

Sourced from super-linter/super-linter's releases.

v8.6.0

8.6.0 (2026-03-31)

🚀 Features

• improve zsh scripts support (#7674) (6a65d3a), closes #7618

🐛 Bugfixes

• exclude zsh scripts from file list (#7536) (d0e883c)
• set markdownlint glob paths from rules file (#7652) (53eb3bb), closes #7650
• unset log level when getting renovate version (#7594) (72c2bd7)

⬆️ Dependency updates

• bundler: bump rubocop in /dependencies in the rubocop group (#7514) (f2264d2)
• bundler: bump rubocop in /dependencies in the rubocop group (#7604) (c929dc3)
• bundler: bump rubocop in /dependencies in the rubocop group (#7662) (bfb2fd9)
• bundler: bump rubocop-github in /dependencies in the rubocop group (#7640) (a88d75e)
• bundler: bump the rubocop group across 1 directory with 2 updates (#7565) (56ae6b3)
• docker: bump python in the docker-base-images group (#7319) (717c087)
• docker: bump the docker group across 1 directory with 4 updates (#7698) (11c750e)
• docker: bump the docker group across 1 directory with 5 updates (#7615) (d7e1bd8)
• docker: bump the docker group across 1 directory with 6 updates (#7566) (0f9cf19)
• docker: bump the docker group across 1 directory with 6 updates (#7631) (ad7f508)
• docker: bump the docker group across 1 directory with 9 updates (#7513) (89e3725)
• docker: bump the docker group with 2 updates (#7577) (8b2f0c0)
• docker: bump the docker group with 2 updates (#7641) (7293e37)
• docker: bump the docker group with 2 updates (#7663) (eabfa25)
• java: bump com.puppycrawl.tools:checkstyle (#7689) (4c66d9d)
• java: bump the java-gradle group across 2 directories with 2 updates (#7581) (51af5a0)
• npm: bump ajv from 6.12.6 to 6.14.0 in /dependencies (#7550) (7f00eb7)
• npm: bump axios from 1.12.2 to 1.13.5 in /dependencies (#7510) (a891169)
• npm: bump brace-expansion from 1.1.12 to 1.1.13 in /dependencies (#7685) (92c4cea)
• npm: bump express-rate-limit from 8.2.1 to 8.3.0 in /dependencies (#7613) (c184a25)
• npm: bump flatted from 3.3.3 to 3.4.1 in /dependencies (#7636) (013d8a7)
• npm: bump hono from 4.11.7 to 4.12.2 in /dependencies (#7559) (5c3679f)
• npm: bump hono from 4.12.5 to 4.12.7 in /dependencies (#7624) (c31d9ad)
• npm: bump markdown-it and renovate in /dependencies (#7529) (9b794c2)
• npm: bump path-to-regexp from 8.3.0 to 8.4.0 in /dependencies (#7687) (309fb55)
• npm: bump picomatch in /dependencies (#7675) (df4f15e)
• npm: bump qs from 6.14.1 to 6.14.2 in /dependencies (#7520) (a9e6534)
• npm: bump renovate (#7699) (b91627f)
• npm: bump renovate from 43.4.0 to 43.4.4 in /dependencies (#7524) (2ab5b9c)
• npm: bump smol-toml from 1.6.0 to 1.6.1 in /dependencies (#7676) (d015498)
• npm: bump the npm group across 1 directory with 15 updates (#7595) (58ee821)
• npm: bump the npm group across 1 directory with 2 updates (#7623) (ddb4fbb)

... (truncated)

Changelog

Sourced from super-linter/super-linter's changelog.

8.6.0 (2026-03-31)

🚀 Features

• improve zsh scripts support (#7674) (6a65d3a), closes #7618

🐛 Bugfixes

• exclude zsh scripts from file list (#7536) (d0e883c)
• set markdownlint glob paths from rules file (#7652) (53eb3bb), closes #7650
• unset log level when getting renovate version (#7594) (72c2bd7)

⬆️ Dependency updates

• bundler: bump rubocop in /dependencies in the rubocop group (#7514) (f2264d2)
• bundler: bump rubocop in /dependencies in the rubocop group (#7604) (c929dc3)
• bundler: bump rubocop in /dependencies in the rubocop group (#7662) (bfb2fd9)
• bundler: bump rubocop-github in /dependencies in the rubocop group (#7640) (a88d75e)
• bundler: bump the rubocop group across 1 directory with 2 updates (#7565) (56ae6b3)
• docker: bump python in the docker-base-images group (#7319) (717c087)
• docker: bump the docker group across 1 directory with 4 updates (#7698) (11c750e)
• docker: bump the docker group across 1 directory with 5 updates (#7615) (d7e1bd8)
• docker: bump the docker group across 1 directory with 6 updates (#7566) (0f9cf19)
• docker: bump the docker group across 1 directory with 6 updates (#7631) (ad7f508)
• docker: bump the docker group across 1 directory with 9 updates (#7513) (89e3725)
• docker: bump the docker group with 2 updates (#7577) (8b2f0c0)
• docker: bump the docker group with 2 updates (#7641) (7293e37)
• docker: bump the docker group with 2 updates (#7663) (eabfa25)
• java: bump com.puppycrawl.tools:checkstyle (#7689) (4c66d9d)
• java: bump the java-gradle group across 2 directories with 2 updates (#7581) (51af5a0)
• npm: bump ajv from 6.12.6 to 6.14.0 in /dependencies (#7550) (7f00eb7)
• npm: bump axios from 1.12.2 to 1.13.5 in /dependencies (#7510) (a891169)
• npm: bump brace-expansion from 1.1.12 to 1.1.13 in /dependencies (#7685) (92c4cea)
• npm: bump express-rate-limit from 8.2.1 to 8.3.0 in /dependencies (#7613) (c184a25)
• npm: bump flatted from 3.3.3 to 3.4.1 in /dependencies (#7636) (013d8a7)
• npm: bump hono from 4.11.7 to 4.12.2 in /dependencies (#7559) (5c3679f)
• npm: bump hono from 4.12.5 to 4.12.7 in /dependencies (#7624) (c31d9ad)
• npm: bump markdown-it and renovate in /dependencies (#7529) (9b794c2)
• npm: bump path-to-regexp from 8.3.0 to 8.4.0 in /dependencies (#7687) (309fb55)
• npm: bump picomatch in /dependencies (#7675) (df4f15e)
• npm: bump qs from 6.14.1 to 6.14.2 in /dependencies (#7520) (a9e6534)
• npm: bump renovate (#7699) (b91627f)
• npm: bump renovate from 43.4.0 to 43.4.4 in /dependencies (#7524) (2ab5b9c)
• npm: bump smol-toml from 1.6.0 to 1.6.1 in /dependencies (#7676) (d015498)
• npm: bump the npm group across 1 directory with 15 updates (#7595) (58ee821)
• npm: bump the npm group across 1 directory with 2 updates (#7623) (ddb4fbb)
• npm: bump the npm group across 1 directory with 2 updates (#7664) (7e22df4)

... (truncated)

Commits

• 9e86335 chore(main): release 8.6.0 (#7512)
• b91627f deps(npm): bump renovate (#7699)
• 11c750e deps(docker): bump the docker group across 1 directory with 4 updates (#7698)
• 4c66d9d deps(java): bump com.puppycrawl.tools:checkstyle (#7689)
• cb17f60 deps(python): bump the pip group across 1 directory with 5 updates (#7684)
• 6a65d3a feat: improve zsh scripts support (#7674)
• eb8ddc7 chore: update ruby and npm deps (#7694)
• db85efc deps(npm): bump the npm group across 1 directory with 9 updates (#7690)
• c5ec78d ci(dev-npm): bump the npm_and_yarn group across 1 directory with 1 update (#7...
• f35a407 ci(dev-docker): bump node in /dev-dependencies (#7678)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

Super-linter summary

Language	Validation result
BIOME_FORMAT	Fail ❌
BIOME_LINT	Pass ✅
CHECKOV	Pass ✅
GITHUB_ACTIONS	Fail ❌
GITHUB_ACTIONS_ZIZMOR	Fail ❌
GITLEAKS	Pass ✅
GIT_MERGE_CONFLICT_MARKERS	Pass ✅
JAVASCRIPT_ES	Pass ✅
JAVASCRIPT_PRETTIER	Pass ✅
JSCPD	Pass ✅
JSON	Pass ✅
JSON_PRETTIER	Pass ✅
MARKDOWN	Pass ✅
MARKDOWN_PRETTIER	Pass ✅
NATURAL_LANGUAGE	Pass ✅
PRE_COMMIT	Pass ✅
SPELL_CODESPELL	Pass ✅
TRIVY	Pass ✅
YAML	Pass ✅
YAML_PRETTIER	Pass ✅

Super-linter detected linting errors

For more information, see the GitHub Actions workflow run

Powered by Super-linter

BIOME_FORMAT

Checked 2 files in 5ms. No fixes applied.
Found 2 errors.package.json format ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

  × Formatter would have printed the following content:

    1 1 │   {
    2   │ - ··"devDependencies":·{
    3   │ - ····"standard":·"^17.1.2"
    4   │ - ··}
      2 │ + → "devDependencies":·{
      3 │ + → → "standard":·"^17.1.2"
      4 │ + → }
    5 5 │   }
    6 6 │


scripts/static-utils.js format ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

  × Formatter would have printed the following content:

    13 13 │    */
    14 14 │   function parse({ core }, state = {}) {
    15    │ - ··const·fs·=·require("fs");
    16    │ - ··let·config·=·{};
    17    │ - ··try·{
    18    │ - ····config·=·JSON.parse(fs.readFileSync("./static.json",·"utf8"));
    19    │ - ··}·catch·(e)·{
    20    │ - ····core.setFailed(`Unable·to·parse·static.json:·${e.message}`);
    21    │ - ··}
    22    │ - ··//·Merge·GitHub·Action·state·with·the·parsed·static.json
    23    │ - ··config·=·{
    24    │ - ····...config,
    25    │ - ····_static:·{
    26    │ - ······host:·{
    27    │ - ········...state.host,
    28    │ - ······},
    29    │ - ······...config._static,
    30    │ - ····},
    31    │ - ··};
       15 │ + → const·fs·=·require("fs");
       16 │ + → let·config·=·{};
       17 │ + → try·{
       18 │ + → → config·=·JSON.parse(fs.readFileSync("./static.json",·"utf8"));
       19 │ + → }·catch·(e)·{
       20 │ + → → core.setFailed(`Unable·to·parse·static.json:·${e.message}`);
       21 │ + → }
       22 │ + → //·Merge·GitHub·Action·state·with·the·parsed·static.json
       23 │ + → config·=·{
       24 │ + → → ...config,
       25 │ + → → _static:·{
       26 │ + → → → host:·{
       27 │ + → → → → ...state.host,
       28 │ + → → → },
       29 │ + → → → ...config._static,
       30 │ + → → },
       31 │ + → };
    32 32 │
    33    │ - ··try·{
    34    │ - ····validate(config);
    35    │ - ··}·catch·(e)·{
    36    │ - ····core.setFailed(`Invalid·static.json:·${e.message}`);
    37    │ - ··}
    38    │ - ··return·config;
       33 │ + → try·{
       34 │ + → → validate(config);
       35 │ + → }·catch·(e)·{
       36 │ + → → core.setFailed(`Invalid·static.json:·${e.message}`);
       37 │ + → }
       38 │ + → return·config;
    39 39 │   }
    40 40 │
    ····· │
    43 43 │    */
    44 44 │   function validate(config) {
    45    │ - ··if·(!config)·{
    46    │ - ····throw·new·Error("No·configuration·provided.");
    47    │ - ··}
    48    │ - ··if·(!("_static"·in·config)·||·!config._static)·{
    49    │ - ····throw·new·Error("`_static`·member·not·found·in·configuration.");
    50    │ - ··}
    51    │ - ··if·(!config._static?.generator)·{
    52    │ - ····throw·new·Error("A·`generator`·is·required·in·a·`_static`·configuration.");
    53    │ - ··}
    54    │ - ··if·(config._static?.ecosystem·&&·config._static?.ecosystem·!==·"npm")·{
    55    │ - ····throw·new·Error(
    56    │ - ······"Unknown·ecosystem·provided.·`npm`·is·currently·the·only·official·supported·ecosystem.",
    57    │ - ····);
    58    │ - ··}
    59    │ - ··return·true;
       45 │ + → if·(!config)·{
       46 │ + → → throw·new·Error("No·configuration·provided.");
       47 │ + → }
       48 │ + → if·(!("_static"·in·config)·||·!config._static)·{
       49 │ + → → throw·new·Error("`_static`·member·not·found·in·configuration.");
       50 │ + → }
       51 │ + → if·(!config._static?.generator)·{
       52 │ + → → throw·new·Error("A·`generator`·is·required·in·a·`_static`·configuration.");
       53 │ + → }
       54 │ + → if·(config._static?.ecosystem·&&·config._static?.ecosystem·!==·"npm")·{
       55 │ + → → throw·new·Error(
       56 │ + → → → "Unknown·ecosystem·provided.·`npm`·is·currently·the·only·official·supported·ecosystem.",
       57 │ + → → );
       58 │ + → }
       59 │ + → return·true;
    60 60 │   }
    61 61 │
    62 62 │   module.exports = {
    63    │ - ··parse,
    64    │ - ··validate,
       63 │ + → parse,
       64 │ + → validate,
    65 65 │   };
    66 66 │


format ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

  × Some errors were emitted while running checks.

GITHUB_ACTIONS

.github/workflows/static.yml:140:9: shellcheck reported issue in this script: SC2086:info:1:36: Double quote to prevent globbing and word splitting [shellcheck]
    |
140 |         run: |
    |         ^~~~
.github/workflows/static.yml:146:9: shellcheck reported issue in this script: SC2086:info:2:12: Double quote to prevent globbing and word splitting [shellcheck]
    |
146 |         run: |
    |         ^~~~

GITHUB_ACTIONS_ZIZMOR

�[1m�[33mwarning[dependabot-cooldown]�[0m�[1m: insufficient cooldown in Dependabot updates�[0m
 �[1m�[94m--> �[0m/github/workspace/.github/dependabot.yml:3:5
  �[1m�[94m|�[0m
�[1m�[94m3�[0m �[1m�[94m|�[0m   - package-ecosystem: "github-actions"
  �[1m�[94m|�[0m     �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33mmissing cooldown configuration�[0m
  �[1m�[94m|�[0m
  �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
  �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
  �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#dependabot-cooldown�[39m

�[1m�[33mwarning[dependabot-cooldown]�[0m�[1m: insufficient cooldown in Dependabot updates�[0m
 �[1m�[94m--> �[0m/github/workspace/.github/dependabot.yml:7:5
  �[1m�[94m|�[0m
�[1m�[94m7�[0m �[1m�[94m|�[0m   - package-ecosystem: "npm"
  �[1m�[94m|�[0m     �[1m�[33m^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[33mmissing cooldown configuration�[0m
  �[1m�[94m|�[0m
  �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
  �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
  �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#dependabot-cooldown�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
  �[1m�[94m--> �[0m/github/workspace/.github/workflows/lint.yml:27:15
   �[1m�[94m|�[0m
�[1m�[94m27�[0m �[1m�[94m|�[0m         uses: actions/checkout@v6
   �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
   �[1m�[94m|�[0m
   �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
   �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
   �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
  �[1m�[94m--> �[0m/github/workspace/.github/workflows/lint.yml:35:15
   �[1m�[94m|�[0m
�[1m�[94m35�[0m �[1m�[94m|�[0m         uses: super-linter/super-linter/slim@v8.6.0
   �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
   �[1m�[94m|�[0m
   �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
   �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
   �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
  �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:49:15
   �[1m�[94m|�[0m
�[1m�[94m49�[0m �[1m�[94m|�[0m         uses: actions/checkout@v6
   �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
   �[1m�[94m|�[0m
   �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
   �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
   �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
  �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:55:15
   �[1m�[94m|�[0m
�[1m�[94m55�[0m �[1m�[94m|�[0m         uses: actions/configure-pages@v5
   �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
   �[1m�[94m|�[0m
   �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
   �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
   �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
  �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:59:15
   �[1m�[94m|�[0m
�[1m�[94m59�[0m �[1m�[94m|�[0m         uses: actions/github-script@v8
   �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
   �[1m�[94m|�[0m
   �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
   �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
   �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:131:15
    �[1m�[94m|�[0m
�[1m�[94m131�[0m �[1m�[94m|�[0m         uses: actions/setup-node@v6
    �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:155:15
    �[1m�[94m|�[0m
�[1m�[94m155�[0m �[1m�[94m|�[0m         uses: actions/checkout@v6
    �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:187:15
    �[1m�[94m|�[0m
�[1m�[94m187�[0m �[1m�[94m|�[0m         uses: actions/upload-pages-artifact@v4
    �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[1m�[91merror[unpinned-uses]�[0m�[1m: unpinned action reference�[0m
   �[1m�[94m--> �[0m/github/workspace/.github/workflows/static.yml:193:15
    �[1m�[94m|�[0m
�[1m�[94m193�[0m �[1m�[94m|�[0m         uses: actions/deploy-pages@v4
    �[1m�[94m|�[0m               �[1m�[91m^^^^^^^^^^^^^^^^^^^^^^^�[0m �[1m�[91maction is not pinned to a hash (required by blanket policy)�[0m
    �[1m�[94m|�[0m
    �[1m�[94m= �[0m�[1mnote�[0m: audit confidence → High
    �[1m�[94m= �[0m�[1mnote�[0m: this finding has an auto-fix
    �[1m�[94m= �[0m�[1mhelp�[0m: audit documentation → �[32mhttps://docs.zizmor.sh/audits/#unpinned-uses�[39m

�[32m17�[39m findings (�[1m�[93m6�[39m suppressed, �[92m11�[39m fixable�[0m): �[35m0�[39m informational, �[36m0�[39m low, �[33m2�[39m medium, �[31m9�[39m high🌈 zizmor v1.23.1
�[32m INFO�[0m �[1maudit�[0m�[2m:�[0m �[2mzizmor�[0m�[2m:�[0m 🌈 completed /github/workspace/.github/dependabot.yml
�[32m INFO�[0m �[1maudit�[0m�[2m:�[0m �[2mzizmor�[0m�[2m:�[0m 🌈 completed /github/workspace/.github/workflows/lint.yml
�[32m INFO�[0m �[1maudit�[0m�[2m:�[0m �[2mzizmor�[0m�[2m:�[0m 🌈 completed /github/workspace/.github/workflows/static.yml