From 94269925ebf844e620694cc6e28445dbbc0efcc5 Mon Sep 17 00:00:00 2001
From: William Woodruff <william@yossarian.net>
Date: Fri, 24 Jan 2025 15:01:07 -0500
Subject: [PATCH 1/3] docs: bump trophies (#486)

---
 docs/snippets/trophies.md  | 1 +
 docs/snippets/trophies.txt | 1 +
 2 files changed, 2 insertions(+)

diff --git a/docs/snippets/trophies.md b/docs/snippets/trophies.md
index 3f72ad37..45adf9ba 100644
--- a/docs/snippets/trophies.md
+++ b/docs/snippets/trophies.md
@@ -675,6 +675,7 @@
         - sigstore/cosign#3959
         - sigstore/fulcio#1910
         - sigstore/gitsign#602
+        - sigstore/sigstore-rs#424
 
 
 -   ![](https://github.com/simpeg.png?size=40){ width="40" loading=lazy align=left } simpeg
diff --git a/docs/snippets/trophies.txt b/docs/snippets/trophies.txt
index 07fd068b..e1942557 100644
--- a/docs/snippets/trophies.txt
+++ b/docs/snippets/trophies.txt
@@ -136,6 +136,7 @@ Saghen/blink.cmp#991
 sigstore/cosign#3959
 sigstore/fulcio#1910
 sigstore/gitsign#602
+sigstore/sigstore-rs#424
 simpeg/simpeg#1592
 termcolor/termcolor#89
 termux/termux-packages#22519

From b47bbfba07f53636363ce48622012cb3ac5c58b5 Mon Sep 17 00:00:00 2001
From: William Woodruff <william@yossarian.net>
Date: Fri, 24 Jan 2025 16:24:14 -0500
Subject: [PATCH 2/3] deps: bump github-actions-models (#487)

---
 Cargo.lock            | 4 ++--
 Cargo.toml            | 2 +-
 docs/release-notes.md | 2 ++
 3 files changed, 5 insertions(+), 3 deletions(-)

diff --git a/Cargo.lock b/Cargo.lock
index c434cd6b..e5cfea55 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -616,9 +616,9 @@ checksum = "07e28edb80900c19c28f1072f2e8aeca7fa06b23cd4169cefe1af5aa3260783f"
 
 [[package]]
 name = "github-actions-models"
-version = "0.22.0"
+version = "0.23.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ea4c30fa8bf11e002d3ca72233e7a7bac33ffce4dc50877d63a8f5a161e0cd84"
+checksum = "f2269402e4d8fe06d41aa858a0fe15a49842764334d0aacc52f5f41e11466e30"
 dependencies = [
  "indexmap",
  "serde",
diff --git a/Cargo.toml b/Cargo.toml
index b0edefe9..a0bb148e 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -23,7 +23,7 @@ clap-verbosity-flag = { version = "3.0.2", features = [
 ], default-features = false }
 etcetera = "0.8.0"
 flate2 = "1.0.35"
-github-actions-models = "0.22.0"
+github-actions-models = "0.23.0"
 http-cache-reqwest = "0.15.0"
 human-panic = "2.0.1"
 indexmap = "2.7.1"
diff --git a/docs/release-notes.md b/docs/release-notes.md
index b5ed9d7e..0d1dc770 100644
--- a/docs/release-notes.md
+++ b/docs/release-notes.md
@@ -20,6 +20,8 @@ Nothing to see here (yet!)
 
 * Fixed a bug where `zizmor` would fail to discover actions within
   subdirectories of `.github/workflows` (#477)
+* Fixed a bug where `zizmor` would fail to parse composite action definitions
+  with no `name` field (#487)
 
 ## v1.2.2
 

From d6aeaaaa108c14565f6208a69886e1e0f96da660 Mon Sep 17 00:00:00 2001
From: William Woodruff <william@yossarian.net>
Date: Fri, 24 Jan 2025 17:56:30 -0500
Subject: [PATCH 3/3] cli: reduce warning to info when skipping audits (#488)

---
 src/main.rs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/main.rs b/src/main.rs
index 84749d78..e5009af6 100644
--- a/src/main.rs
+++ b/src/main.rs
@@ -356,7 +356,7 @@ fn run() -> Result<ExitCode> {
             use crate::audit::AuditCore as _;
             match base::new(audit_state.clone()) {
                 Ok(audit) => audit_registry.register_audit(base::ident(), Box::new(audit)),
-                Err(e) => tracing::warn!("skipping {audit}: {e}", audit = base::ident()),
+                Err(e) => tracing::info!("skipping {audit}: {e}", audit = base::ident()),
             }
         }};
     }