Psalm static code analysis

[stable32] build(deps): Bump libphonenumber-js from 1.12.29 to 1.12.33 #70723

Sign in to view logs

Triggered via pull request December 21, 2025 09:25

nextcloud-command

synchronize #57202

dependabot/npm_and_yarn/stable32/libphonenumber-js-1.12.33

Status Success

Total duration 6m 55s

Artifacts –

static-code-analysis.yml

on: pull_request

static-code-analysis

static-code-analysis-security

static-code-analysis-ocp

static-code-analysis-ncu

Annotations

2 errors and 1 warning

TaintedCallable: apps/workflowengine/lib/Manager.php#L495

apps/workflowengine/lib/Manager.php:495:39: TaintedCallable: Detected tainted text (see https://psalm.dev/243)

TaintedCallable: apps/workflowengine/lib/Manager.php#L462

apps/workflowengine/lib/Manager.php:462:38: TaintedCallable: Detected tainted text (see https://psalm.dev/243)

static-code-analysis-security

This run of the CodeQL Action does not have permission to access Code Scanning API endpoints. As a result, it will not be opted into any experimental features. This could be because the Action is running on a pull request from a fork. If not, please ensure the Action has the 'security-events: write' permission. Details: Resource not accessible by integration - https://docs.github.com/rest