Skip to content

[StepSecurity] Apply security best practices #2567

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
stepsecurity-app wants to merge 1 commit into
base: main
Choose a base branch
from
Open

[StepSecurity] Apply security best practices #2567

stepsecurity-app wants to merge 1 commit into from

Conversation

@stepsecurity-app
Copy link
Contributor

@stepsecurity-app stepsecurity-app bot commented Dec 16, 2025

Summary

This pull request has been generated by StepSecurity as part of your enterprise subscription to ensure compliance with recommended security best practices. Please review and merge the pull request to apply these security enhancements.

Security Fixes

Pinned Dependencies

Pinning GitHub Actions to specific versions or commit SHAs ensures that your workflows remain consistent and secure.
Unpinned actions can lead to unexpected changes or vulnerabilities caused by upstream updates.

Feedback

For bug reports, feature requests, and general feedback; please create an issue in step-security/secure-repo or contact us via our website.

@stepsecurity-app
[StepSecurity] Apply security best practices
33c69cd 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
@vercel
Copy link

vercel bot commented Dec 16, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
ock-minikit-example Ready Ready Preview, Comment Dec 16, 2025 6:19pm
onchainkit-playground Ready Ready Preview, Comment Dec 16, 2025 6:19pm
onchainkit-routes Ready Ready Preview, Comment Dec 16, 2025 6:19pm

@cb-heimdall
Copy link

cb-heimdall commented Dec 16, 2025
edited
Loading

🟡 Heimdall Review Status

Requirement Status More Info
Reviews 🟡 0/1
Denominator calculation
Show calculation
1 if user is bot 0
1 if user is external 0
2 if repo is sensitive 0
From .codeflow.yml 1
Additional review requirements
Show calculation
Max 0
0
From CODEOWNERS 0
Global minimum 0
Max 1
1
1 if commit is unverified 0
Sum 1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cb-heimdall