Psalm static code analysis

[stable32] build(deps-dev): Bump webpack from 5.103.0 to 5.104.1 #70718

Sign in to view logs

Triggered via pull request December 20, 2025 18:20

nextcloud-command

synchronize #57207

dependabot/npm_and_yarn/stable32/webpack-5.104.1

Status Success

Total duration 7m 18s

Artifacts –

static-code-analysis.yml

on: pull_request

static-code-analysis

static-code-analysis-security

static-code-analysis-ocp

static-code-analysis-ncu

Annotations

2 errors and 1 warning

TaintedCallable: apps/workflowengine/lib/Manager.php#L495

apps/workflowengine/lib/Manager.php:495:39: TaintedCallable: Detected tainted text (see https://psalm.dev/243)

TaintedCallable: apps/workflowengine/lib/Manager.php#L462

apps/workflowengine/lib/Manager.php:462:38: TaintedCallable: Detected tainted text (see https://psalm.dev/243)

static-code-analysis-security

This run of the CodeQL Action does not have permission to access Code Scanning API endpoints. As a result, it will not be opted into any experimental features. This could be because the Action is running on a pull request from a fork. If not, please ensure the Action has the 'security-events: write' permission. Details: Resource not accessible by integration - https://docs.github.com/rest