)]}'
{
  "commit": "1f7a318dd01283f46bdd67ae519c3df7a0950cf7",
  "tree": "0b0ac16ec800469d56e988ce3b1a92172b12ce8d",
  "parents": [
    "5bbe9eeb02b93fdc855445d93f146ea5ec2baf1a"
  ],
  "author": {
    "name": "dependabot[bot]",
    "email": "49699333+dependabot[bot]@users.noreply.github.com",
    "time": "Mon May 25 10:07:20 2026 +0800"
  },
  "committer": {
    "name": "GitHub",
    "email": "noreply@github.com",
    "time": "Mon May 25 10:07:20 2026 +0800"
  },
  "message": "chore(deps): bump zizmorcore/zizmor-action from 0.5.3 to 0.5.6 (#678)\n\nBumps\n[zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action)\nfrom 0.5.3 to 0.5.6.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/releases\"\u003ezizmorcore/zizmor-action\u0027s\nreleases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.5.6\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e1.25.2 is now available via the action\u003c/li\u003e\n\u003cli\u003e1.25.2 is now the default version of zizmor used by the action\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.5.5\u003c/h2\u003e\n\u003cp\u003eThis is a no-op release.\u003c/p\u003e\n\u003ch2\u003ev0.5.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e1.25.0 is now available via the action\u003c/li\u003e\n\u003cli\u003e1.25.0 is now the default version of zizmor used by the action\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/5f14fd08f7cf1cb1609c1e344975f152c7ee938d\"\u003e\u003ccode\u003e5f14fd0\u003c/code\u003e\u003c/a\u003e\nSync zizmor versions (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/114\"\u003e#114\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/a16621b09c6db4281f81a93cb393b05dcd7b7165\"\u003e\u003ccode\u003ea16621b\u003c/code\u003e\u003c/a\u003e\nBump pins in README (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/112\"\u003e#112\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/1c03e047a3633631b1e5648c48243045b1de0d25\"\u003e\u003ccode\u003e1c03e04\u003c/code\u003e\u003c/a\u003e\nchore(deps): bump github/codeql-action from 4.35.2 to 4.35.3 in the\ngithub-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/b572f7b1a1c2d41efaab43d504f68d215c3cd727\"\u003e\u003ccode\u003eb572f7b\u003c/code\u003e\u003c/a\u003e\nSync zizmor versions (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/111\"\u003e#111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/06928c5dcba418c7d6108a4bd6e2d34cbf3c9377\"\u003e\u003ccode\u003e06928c5\u003c/code\u003e\u003c/a\u003e\nchore(deps): bump github/codeql-action in the github-actions group (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/109\"\u003e#109\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/5ea8b96e1078453e04a1b81443890d9e7da5ddf3\"\u003e\u003ccode\u003e5ea8b96\u003c/code\u003e\u003c/a\u003e\ndocs: Update link to GitHub docs (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/108\"\u003e#108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/849ac260951adeb7c02481da6c7e749b39f4ea6d\"\u003e\u003ccode\u003e849ac26\u003c/code\u003e\u003c/a\u003e\nchore(deps): bump the github-actions group with 2 updates (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/106\"\u003e#106\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/commit/814f9778aceea8641503a8cd8f0cffebc55d790c\"\u003e\u003ccode\u003e814f977\u003c/code\u003e\u003c/a\u003e\nBump pins in README (\u003ca\nhref\u003d\"https://redirect.github.com/zizmorcore/zizmor-action/issues/103\"\u003e#103\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca\nhref\u003d\"https://github.com/zizmorcore/zizmor-action/compare/b1d7e1fb5de872772f31590499237e7cce841e8e...5f14fd08f7cf1cb1609c1e344975f152c7ee938d\"\u003ecompare\nview\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name\u003dzizmorcore/zizmor-action\u0026package-manager\u003dgithub_actions\u0026previous-version\u003d0.5.3\u0026new-version\u003d0.5.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don\u0027t\nalter it yourself. You can also trigger a rebase manually by commenting\n`@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits\nthat have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all\nof the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop\nDependabot creating any more for this major version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop\nDependabot creating any more for this minor version (unless you reopen\nthe PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop\nDependabot creating any more for this dependency (unless you reopen the\nPR or upgrade to it yourself)\n\n\n\u003c/details\u003e\n\nSigned-off-by: dependabot[bot] \u003csupport@github.com\u003e\nCo-authored-by: dependabot[bot] \u003c49699333+dependabot[bot]@users.noreply.github.com\u003e",
  "tree_diff": [
    {
      "type": "modify",
      "old_id": "a265483fa249043d7d818d0a414fba4bb6c712d3",
      "old_mode": 33188,
      "old_path": ".github/workflows/zizmor.yml",
      "new_id": "eb70d46bb60b1b0e40eceeebb968a559226ab814",
      "new_mode": 33188,
      "new_path": ".github/workflows/zizmor.yml"
    }
  ]
}