0
Open alerts
0
Resolved
0
Fixed at source
0
Kept (signal)
| Type | Location | Alert | Disposition |
|---|
Generated SARIF filter (scorecard.yml)
PinnedDependenciesID alerts from OpenSSF Scorecard on orchestkit @ 2026-06-01.
Toggle the two remediations this PR ships and watch the open code-scanning count resolve.
Then flip on the "future unpinned action" probe to prove the hybrid filter still catches the one
failure class that matters — exactly the ci-sentinel.yml slip that triggered this work.
| Type | Location | Alert | Disposition |
|---|