Skip to content

[StepSecurity] Apply security best practices#481

Merged
cx-yevgeny-kuznetsov merged 1 commit into
mainfrom
chore/GHA-291953-stepsecurity-remediation
May 30, 2026
Merged

[StepSecurity] Apply security best practices#481
cx-yevgeny-kuznetsov merged 1 commit into
mainfrom
chore/GHA-291953-stepsecurity-remediation

[StepSecurity] Apply security best practices

5bd4da3
Select commit
Loading
Failed to load commit list.
StepSecurity Actions Security / StepSecurity Required Checks succeeded May 29, 2026 in 0s

StepSecurity Required Checks

Finished StepSecurity Required Checks

  • NPM Package Cooldown Check - Fails if any package version in the PR was released within the configured cooldown period, helping to avoid brand-new (and potentially unreviewed or malicious) releases
  • PyPI Compromised Packages Check - Checks for compromised PyPI package versions in the PR
  • PyPI Package Cooldown Check - Fails if any PyPI package version in the PR was released within the configured cooldown period
  • Pwn Request Vulnerabilities Check - Checks for Pwn Request vulnerabilities in the PR via risky triggers
  • Script Injection Check - Checks for script injection vulnerabilities in the PR
  • NPM Compromised Packages Check - Checks for compromised npm package versions in the PR

Details

✅ PyPI Compromised Packages Check

No compromised PyPI package versions found in current PR.

✅ NPM Package Cooldown Check

No npm package upgrades to recent releases found in current PR.

✅ NPM Compromised Packages Check

No Compromised npm packages are added in current PR.

✅ PyPI Package Cooldown Check

No PyPI package upgrades to recent releases found in current PR.

✅ Script Injection Vulnerabilities Check

No Script Injection vulnerabilities found in this PR.

✅ Pwn Request Vulnerabilities Check

No Pwn Request vulnerabilities found in this PR.

View more details on StepSecurity Actions Security