Psalm static code analysis

[stable32] build(deps): bump @nextcloud/files from 3.12.0 to 3.12.1 #70335

Sign in to view logs

Triggered via pull request December 13, 2025 02:22

dependabot[bot]

opened #57065

dependabot/npm_and_yarn/stable32/nextcloud/files-3.12.1

Status Success

Total duration 47m 30s

Artifacts –

static-code-analysis.yml

on: pull_request

static-code-analysis

static-code-analysis-security

static-code-analysis-ocp

static-code-analysis-ncu

Annotations

2 errors and 1 warning

TaintedCallable: apps/workflowengine/lib/Manager.php#L495

apps/workflowengine/lib/Manager.php:495:39: TaintedCallable: Detected tainted text (see https://psalm.dev/243)

TaintedCallable: apps/workflowengine/lib/Manager.php#L462

apps/workflowengine/lib/Manager.php:462:38: TaintedCallable: Detected tainted text (see https://psalm.dev/243)

static-code-analysis-security

This run of the CodeQL Action does not have permission to access Code Scanning API endpoints. As a result, it will not be opted into any experimental features. This could be because the Action is running on a pull request from a fork. If not, please ensure the Action has the 'security-events: write' permission. Details: Resource not accessible by integration - https://docs.github.com/rest