Check for a new zizmor version in Wolfi OS #680

	name: Check for a new zizmor version in Wolfi OS

	on:
	schedule:
	- cron: "0 /6 * *" # every 6 hours
	workflow_dispatch:

	permissions: {}

	jobs:
	check-for-new-version:
	name: Check for new zizmor version in Wolfi OS
	runs-on: ubuntu-latest
	# this job does not make sense on forks
	if: ${{ github.repository_owner == 'zizmorcore' }}

	permissions:
	packages: read # to read the current Docker image version
	issues: write # to create an issue if a new version is found

	steps:
	- uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1
	with:
	persist-credentials: false
	sparse-checkout: support/

	- name: Check for new zizmor version in Wolfi OS
	run: \|
	./support/wolfi-update-check.sh
	env:
	GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
	GH_REPO: ${{ github.repository }}

Provide feedback