{"version": "2.1.0", "$schema": "https://json.schemastore.org/sarif-2.1.0.json", "runs": [{"tool": {"driver": {"name": "Repobility", "informationUri": "https://repobility.com", "rules": [{"id": "CFG006", "name": "[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts.", "shortDescription": {"text": "[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts."}, "fullDescription": {"text": "Add a .gitignore appropriate for your language/framework."}, "properties": {"scanner": "repobility-threat-engine", "category": "practices", "severity": "medium", "confidence": 1.0, "cwe": "", "owasp": ""}}, {"id": "CORE_NO_TESTS", "name": "No test files found in a documentation, catalog, or template-heavy repository", "shortDescription": {"text": "No test files found in a documentation, catalog, or template-heavy repository"}, "fullDescription": {"text": "If this repository ships runnable code, add focused tests for those examples or templates. If it is documentation/catalog content only, mark the finding as accepted or add a .repobilityignore note."}, "properties": {"scanner": "repobility-core", "category": "testing", "severity": "info", "confidence": 0.35, "cwe": "", "owasp": ""}}, {"id": "MINED115", "name": "Action `peaceiris/actions-gh-pages` pinned to mutable ref `@v4`", "shortDescription": {"text": "Action `peaceiris/actions-gh-pages` pinned to mutable ref `@v4`"}, "fullDescription": {"text": "`uses: peaceiris/actions-gh-pages@v4` resolves at workflow-run time. Tags and branches can be re-pushed by the action owner; that made the tj-actions/changed-files compromise (2025) instantly affect ~23K repos. Pin to a 40-char commit SHA + lock with Dependabot or renovate."}, "properties": {"scanner": "repobility-supply-chain", "category": "dependency", "severity": "high", "confidence": 0.9, "cwe": "", "owasp": ""}}]}}, "automationDetails": {"id": "repobility/1009"}, "properties": {"repository": "HDVinnie/TrackerHub", "repoUrl": "https://github.com/HDVinnie/TrackerHub", "branch": "master"}, "results": [{"ruleId": "CFG006", "level": "warning", "message": {"text": "[CFG006] Missing .gitignore: No .gitignore file. Risk of committing secrets and build artifacts."}, "properties": {"repobilityId": 94709, "scanner": "repobility-threat-engine", "fingerprint": "c65fc71ce58c37a0e07837c0fe294108b731c43ef16027a2f0971c757bbe9a16", "category": "practices", "severity": "medium", "confidence": 1.0, "triageState": "open", "verdict": "confirmed", "isResolved": false, "reason": "No .gitignore file found in repository root", "evidence": {"reason": "No .gitignore file found in repository root", "rule_id": "CFG006", "scanner": "repobility-threat-engine", "confidence": 1.0, "correlation_key": "repo|practices|cfg006"}}}, {"ruleId": "CORE_NO_TESTS", "level": "none", "message": {"text": "No test files found in a documentation, catalog, or template-heavy repository"}, "properties": {"repobilityId": 94686, "scanner": "repobility-core", "fingerprint": "69cfb3536a8ccff500ccafcd681fc8d4bc9f4eda6689da02ddec81654bd9fd15", "category": "testing", "severity": "info", "confidence": 0.35, "triageState": "false_positive", "verdict": "likely_fp", "isResolved": true, "reason": "Repository shape is documentation, catalog, skill, or template-heavy rather than a conventional runnable application.", "evidence": {"reason": "Repository shape is documentation, catalog, skill, or template-heavy rather than a conventional runnable application.", "rule_id": "CORE_NO_TESTS", "scanner": "repobility-core", "confidence": 0.35, "correlation_key": "repo|testing|core_no_tests"}}}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `peaceiris/actions-gh-pages` pinned to mutable ref `@v4`"}, "properties": {"repobilityId": 94708, "scanner": "repobility-supply-chain", "fingerprint": "3733b994fb43c0dcb184bcc93da6577651c73d74ebc4b82cce83ee4addbbb120", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|3733b994fb43c0dcb184bcc93da6577651c73d74ebc4b82cce83ee4addbbb120"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 68}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94707, "scanner": "repobility-supply-chain", "fingerprint": "3ff9dd1f9651cbc9e480ffb0c831ca2c05759444fa1a154886aeeb0738aad215", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|3ff9dd1f9651cbc9e480ffb0c831ca2c05759444fa1a154886aeeb0738aad215"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 63}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `benc-uk/workflow-dispatch` pinned to mutable ref `@v1`"}, "properties": {"repobilityId": 94706, "scanner": "repobility-supply-chain", "fingerprint": "c15d88fd00d4e1b100421501e57363b34599ed78cf46d55323db5679385d05ab", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|c15d88fd00d4e1b100421501e57363b34599ed78cf46d55323db5679385d05ab"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 58}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94705, "scanner": "repobility-supply-chain", "fingerprint": "bbf889f3e4a0f9274afcba83f6ae5e360b0bbe7f51b56176e351dc6fdfd485b2", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|bbf889f3e4a0f9274afcba83f6ae5e360b0bbe7f51b56176e351dc6fdfd485b2"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 52}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94704, "scanner": "repobility-supply-chain", "fingerprint": "a618248cca72d1fb35ea3cee8d8859e7f02bc920572fd0fbbb247910cd65248f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a618248cca72d1fb35ea3cee8d8859e7f02bc920572fd0fbbb247910cd65248f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 45}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94703, "scanner": "repobility-supply-chain", "fingerprint": "a9607cfd0e5b368b65c6491764f1a446d8d7287a82694775f6fde5b0f4e2b65a", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|a9607cfd0e5b368b65c6491764f1a446d8d7287a82694775f6fde5b0f4e2b65a"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 39}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94702, "scanner": "repobility-supply-chain", "fingerprint": "9b69f7efdcc88a3d09da1bb6e21eb553229c72204be68765c9a2c354d2d344d9", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|9b69f7efdcc88a3d09da1bb6e21eb553229c72204be68765c9a2c354d2d344d9"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/setup.yml"}, "region": {"startLine": 34}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `peaceiris/actions-gh-pages` pinned to mutable ref `@v4`"}, "properties": {"repobilityId": 94701, "scanner": "repobility-supply-chain", "fingerprint": "80948d090e8b99f75fb4ed165306d551f1f4de70b916f3f6c36762fc0e483e90", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|80948d090e8b99f75fb4ed165306d551f1f4de70b916f3f6c36762fc0e483e90"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/site.yml"}, "region": {"startLine": 47}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94700, "scanner": "repobility-supply-chain", "fingerprint": "e3bf6f987e6c4ef814662f718423994090d37a43ebb2721b00f7dc231fbc19e7", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|e3bf6f987e6c4ef814662f718423994090d37a43ebb2721b00f7dc231fbc19e7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/site.yml"}, "region": {"startLine": 42}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94699, "scanner": "repobility-supply-chain", "fingerprint": "bda515d2902e42fccc88ff77a779db1e24b4f20dcf732371dd6e1160ac7397f0", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|bda515d2902e42fccc88ff77a779db1e24b4f20dcf732371dd6e1160ac7397f0"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/site.yml"}, "region": {"startLine": 37}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94698, "scanner": "repobility-supply-chain", "fingerprint": "cd59a91c25aba4880f6340b4cac1658cf8c7926a23e4f9fb922b6fdac2a918af", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|cd59a91c25aba4880f6340b4cac1658cf8c7926a23e4f9fb922b6fdac2a918af"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/response-time.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94697, "scanner": "repobility-supply-chain", "fingerprint": "5725c9c2555fa601d43c8c64c51ad3ade6693932c271a531b14da45c0fbfd189", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|5725c9c2555fa601d43c8c64c51ad3ade6693932c271a531b14da45c0fbfd189"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/response-time.yml"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94696, "scanner": "repobility-supply-chain", "fingerprint": "4bcb32806030180479ec1b1d4b773f1491e5ed5d0338b446f89227462be9be9f", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|4bcb32806030180479ec1b1d4b773f1491e5ed5d0338b446f89227462be9be9f"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/summary.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94695, "scanner": "repobility-supply-chain", "fingerprint": "cf7cf7e35830f5b14199264e5024fd0c0ba36588ba5fd7a112aef17112638645", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|cf7cf7e35830f5b14199264e5024fd0c0ba36588ba5fd7a112aef17112638645"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/summary.yml"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94694, "scanner": "repobility-supply-chain", "fingerprint": "1dfa718309856c18cab7f55deb9b36820b2e6d523f2d33d6302bf0cce685d183", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|1dfa718309856c18cab7f55deb9b36820b2e6d523f2d33d6302bf0cce685d183"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/uptime.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94693, "scanner": "repobility-supply-chain", "fingerprint": "46623ff43a36a2a3a421cf8987eccd0775c2257e3e08998471d4cb75a484c6a3", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|46623ff43a36a2a3a421cf8987eccd0775c2257e3e08998471d4cb75a484c6a3"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/uptime.yml"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@master`"}, "properties": {"repobilityId": 94692, "scanner": "repobility-supply-chain", "fingerprint": "0817023172a0427c44ad733114ea5f8a9085874dec0729503b43afe8acd658bc", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|0817023172a0427c44ad733114ea5f8a9085874dec0729503b43afe8acd658bc"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/update-template.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94691, "scanner": "repobility-supply-chain", "fingerprint": "3cc6214e4ede6d3e0feca9ae26f21b48f77cce36875414d73ccae9f3b9e8a68e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|3cc6214e4ede6d3e0feca9ae26f21b48f77cce36875414d73ccae9f3b9e8a68e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/update-template.yml"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/uptime-monitor` pinned to mutable ref `@v1.42.2`"}, "properties": {"repobilityId": 94690, "scanner": "repobility-supply-chain", "fingerprint": "2d32ade65a098e55fc8a7ccc494a88b61f4130ea3611141cfc2c6cb3a33f18a7", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|2d32ade65a098e55fc8a7ccc494a88b61f4130ea3611141cfc2c6cb3a33f18a7"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/graphs.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94689, "scanner": "repobility-supply-chain", "fingerprint": "4e632d003f828870027a497ef250c2093c691e2fbc0be94b744d89a3a162c97c", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|4e632d003f828870027a497ef250c2093c691e2fbc0be94b744d89a3a162c97c"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/graphs.yml"}, "region": {"startLine": 33}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `upptime/updates` pinned to mutable ref `@master`"}, "properties": {"repobilityId": 94688, "scanner": "repobility-supply-chain", "fingerprint": "098922b916a5323b361e59d5a7608bfc3ccee1399dc2f98845843bed62e92928", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|098922b916a5323b361e59d5a7608bfc3ccee1399dc2f98845843bed62e92928"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/updates.yml"}, "region": {"startLine": 38}}}]}, {"ruleId": "MINED115", "level": "error", "message": {"text": "Action `actions/checkout` pinned to mutable ref `@v5`"}, "properties": {"repobilityId": 94687, "scanner": "repobility-supply-chain", "fingerprint": "f735585ad131148673affdfd6256ba3e91e3781fea11ecd548fe1085add27d5e", "category": "dependency", "severity": "high", "confidence": 0.9, "triageState": "open", "verdict": "", "isResolved": false, "reason": "", "evidence": {"mined": true, "mining": {"slug": "gha-mutable-ref", "owasp": "A08:2021", "cwe_ids": ["CWE-829"], "languages": ["yaml"], "observations_count": 0}, "scanner": "repobility-supply-chain", "correlation_key": "fp|f735585ad131148673affdfd6256ba3e91e3781fea11ecd548fe1085add27d5e"}}, "locations": [{"physicalLocation": {"artifactLocation": {"uri": ".github/workflows/updates.yml"}, "region": {"startLine": 33}}}]}]}]}