security: gha: Use Zizomor's auditor mode

This is the strictest possible setting for Zizmor. Signed-off-by: Aurélien Bombo <abombo@microsoft.com>
2026-04-04 19:16:12 +00:00 · 2025-07-22 13:03:06 -05:00
parent 0e929d100b
commit 48a55ce560
1 changed files with 2 additions and 0 deletions
--- a/.github/workflows/zizmor.yaml
+++ b/.github/workflows/zizmor.yaml
@@ -27,3 +27,5 @@ jobs:

      - name: Run zizmor
        uses: zizmorcore/zizmor-action@f52a838cfabf134edcbaa7c8b3677dde20045018 # v0.1.1
+        with:
+          persona: auditor