Scorecard Pinned-Dependencies — Triage Explorer

25 open PinnedDependenciesID alerts from OpenSSF Scorecard on orchestkit @ 2026-06-01. Toggle the two remediations this PR ships and watch the open code-scanning count resolve. Then flip on the "future unpinned action" probe to prove the hybrid filter still catches the one failure class that matters — exactly the ci-sentinel.yml slip that triggered this work.
0
Open alerts
0
Resolved
0
Fixed at source
0
Kept (signal)
TypeLocationAlertDisposition

Generated SARIF filter (scorecard.yml)