Triage log for CodeQL code scanning alerts. Each finding has a report explaining its disposition. Outcome is one of False Positive, Remediated, or Pending.
| Finding | Report | Outcome |
|---|---|---|
| #1 — Unpinned tag for a third-party action | 1.md | Remediated |
| #2 — Checkout of untrusted code in a trusted context | 2.md | Remediated |
| #3 — Checkout of untrusted code in a trusted context | 3.md | Remediated |
#4 — Code injection via hashFiles('go.mod') |
4.md | Remediated |
#5 — Code injection via hashFiles('package.json') |
5.md | Remediated |