[CHORE](gha)(deps): Bump zizmorcore/zizmor-action from 0.5.2 to 0.5.3 (#21)

dependabot[bot] · lowlydba · web-flow · commit 3d67f2a4033e · 2026-04-22T16:46:28.000-04:00
* [CHORE](gha)(deps): Bump zizmorcore/zizmor-action from 0.5.2 to 0.5.3 Bumps [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action) from 0.5.2 to 0.5.3. - [Release notes](https://github.com/zizmorcore/zizmor-action/releases) - [Commits](zizmorcore/zizmor-action@71321a2...b1d7e1f) --- updated-dependencies: - dependency-name: zizmorcore/zizmor-action dependency-version: 0.5.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> * no slim Signed-off-by: John McCall <john@overturemaps.org> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: John McCall <john@overturemaps.org> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: John McCall <john@lowlydba.com>
diff --git a/.github/workflows/omf_sec_checks.yml b/.github/workflows/omf_sec_checks.yml
@@ -40,7 +40,7 @@ jobs:
           persist-credentials: false
 
       - name: Run zizmor 🌈
-        uses: zizmorcore/zizmor-action@71321a20a9ded102f6e9ce5718a2fcec2c4f70d8 # v0.5.2
+        uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3
         with:
           persona: pedantic
           advanced-security: false # Use GH PR Annotations instead of uploading SARIF results for better visibility in the PR
diff --git a/.github/workflows/overture-projection.yml b/.github/workflows/overture-projection.yml
@@ -168,7 +168,7 @@ permissions:
 jobs:
   overture-projection:
     name: Overture PRojection
-    runs-on: ubuntu-slim
+    runs-on: ubuntu-latest
 
     # One active run per PR; cancel in-progress if a new commit is pushed.
     concurrency:
