Bump install-pinned/uv from 95e90cc576af729d90be7d0233d3452899eef976 to 5e770af195bb60f7bafe5430e7c5045bc2894b2a #28

	name: Dependency review

	on:
	push:
	branches:
	- main
	- master
	pull_request:
	schedule:
	- cron: 0 0 * * 1
	workflow_dispatch:

	permissions: read-all

	jobs:
	dependency-review:
	name: Dependency review

	runs-on: ubuntu-latest

	steps:
	- uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	api.github.com:443
	api.securityscorecards.dev:443
	github.com:443

	- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683

	- uses: actions/dependency-review-action@ce3cf9537a52e8119d91fd484ab5b8a807627bf8

Provide feedback