security: gha: Use Zizomor's auditor mode

This is the strictest possible setting for Zizmor. Signed-off-by: Aurélien Bombo <abombo@microsoft.com>
2025-09-14 13:29:31 +00:00 · 2025-07-22 13:03:06 -05:00
parent 754f07cff2
commit 1dcc67c241
1 changed files with 2 additions and 0 deletions
--- a/.github/workflows/zizmor.yaml
+++ b/.github/workflows/zizmor.yaml
@@ -26,3 +26,5 @@ jobs:

      - name: Run zizmor
        uses: zizmorcore/zizmor-action@f52a838cfabf134edcbaa7c8b3677dde20045018 # v0.1.1
+        with:
+          persona: auditor