fix(ci): repair security workflow checks

chrismaz11 · chrismaz11 · commit 774b905bf7f8 · 2026-03-19T23:23:34.000-05:00
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -21,6 +21,6 @@ jobs:
           persist-credentials: false
 
       - name: Dependency diff review
-        uses: actions/dependency-review-action@da45c9571d1e7cdec26844a76b8e6b89e4f1ee6b # v4.7.1
+        uses: actions/dependency-review-action@da24556b548a50705dd671f47852072ea4c105d9 # v4.7.1
         with:
           fail-on-severity: high
diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml
@@ -26,8 +26,8 @@ jobs:
         # Advisory mode — findings are reported but do not fail the job.
         # Maintainers should review and address findings before merging workflow changes.
         run: |
-          zizmor --format plain .github/workflows/
-          EXIT_CODE=$?
+          EXIT_CODE=0
+          zizmor --format plain .github/workflows/ || EXIT_CODE=$?
           if [ $EXIT_CODE -ne 0 ]; then
             echo "::warning::zizmor found workflow security findings (advisory). Review the output above before merging."
           fi
