Skip to content

Commit b75f6e7

Browse files
lhoupertlhoupert
authored
Merge pull request #143 from EOPF-Explorer/chore/pin-github-actions-coord-239
Pin GitHub Actions to commit SHAs (coordination#239)
2 parents 5baa6c8 + 461df1f commit b75f6e7

File tree

5 files changed

+23
-23
lines changed

5 files changed

+23
-23
lines changed

.github/workflows/build_uv_cache.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -17,10 +17,10 @@ jobs:
1717

1818
steps:
1919
- name: Checkout repository
20-
uses: actions/checkout@v5
20+
uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5
2121

2222
- name: Install uv
23-
uses: astral-sh/setup-uv@v7
23+
uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7
2424
with:
2525
version: "0.8.4"
2626
python-version: "3.13"
@@ -33,7 +33,7 @@ jobs:
3333
echo "Cache populated successfully"
3434
3535
- name: Save uv caches
36-
uses: actions/cache/save@v5
36+
uses: actions/cache/save@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5
3737
with:
3838
path: |
3939
~/.cache/uv

.github/workflows/ci.yml

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -10,11 +10,11 @@ jobs:
1010
pre-commit:
1111
runs-on: ubuntu-latest
1212
steps:
13-
- uses: actions/checkout@v5
14-
- uses: actions/setup-python@v6
13+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5
14+
- uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6
1515
with:
1616
python-version: '3.12'
17-
- uses: pre-commit/action@v3.0.1
17+
- uses: pre-commit/action@2c7b3805fd2a0fd8c1884dcaebf91fc102a13ecd # v3.0.1
1818

1919
test:
2020
runs-on: ${{ matrix.os }}
@@ -24,11 +24,11 @@ jobs:
2424
python-version: ['3.12', '3.13']
2525

2626
steps:
27-
- uses: actions/checkout@v5
27+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5
2828

2929
- name: Restore global uv cache
3030
id: cache-restore
31-
uses: actions/cache/restore@v5
31+
uses: actions/cache/restore@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5
3232
with:
3333
path: |
3434
~/.cache/uv
@@ -39,7 +39,7 @@ jobs:
3939
uv-main-
4040
4141
- name: Install uv
42-
uses: astral-sh/setup-uv@v7
42+
uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7
4343
with:
4444
version: "0.8.4"
4545
python-version: "3.13"
@@ -54,15 +54,15 @@ jobs:
5454
5555
- name: Upload coverage to Codecov
5656
if: matrix.os == 'ubuntu-latest' && matrix.python-version == '3.12'
57-
uses: codecov/codecov-action@v5
57+
uses: codecov/codecov-action@1af58845a975a7985b0beb0cbe6fbbb71a41dbad # v5
5858
with:
5959
file: ./coverage.xml
6060
flags: unittests
6161
name: codecov-umbrella
6262

6363
- name: Save uv caches
6464
if: steps.cache-restore.outputs.cache-hit != 'true'
65-
uses: actions/cache/save@v5
65+
uses: actions/cache/save@668228422ae6a00e4ad889ee87cd7109ec5666a7 # v5
6666
with:
6767
path: |
6868
~/.cache/uv
@@ -73,10 +73,10 @@ jobs:
7373
security:
7474
runs-on: ubuntu-latest
7575
steps:
76-
- uses: actions/checkout@v5
76+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5
7777

7878
- name: Set up Python
79-
uses: actions/setup-python@v6
79+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6
8080
with:
8181
python-version: '3.12'
8282

@@ -91,7 +91,7 @@ jobs:
9191
safety check --json --output safety-report.json || true
9292
9393
- name: Upload security reports
94-
uses: actions/upload-artifact@v6
94+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
9595
with:
9696
name: security-reports
9797
path: |

.github/workflows/docs.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -15,15 +15,15 @@ jobs:
1515
pages: write
1616
runs-on: ubuntu-latest
1717
steps:
18-
- uses: actions/checkout@v5
18+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5
1919

2020
- name: Set up Python
21-
uses: actions/setup-python@v6
21+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6
2222
with:
2323
python-version: '3.11'
2424

2525
- name: Install uv
26-
uses: astral-sh/setup-uv@v7
26+
uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7
2727
with:
2828
version: "0.8.4"
2929
python-version: "3.13"

.github/workflows/release-please.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
steps:
1616
- name: Release Please
1717
id: release
18-
uses: googleapis/release-please-action@v4
18+
uses: googleapis/release-please-action@16a9c90856f42705d54a6fda1823352bdc62cf38 # v4
1919
with:
2020
config-file: "release-please-config.json"
2121
manifest-file: ".release-please-manifest.json"

.github/workflows/release.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -8,10 +8,10 @@ jobs:
88
build:
99
runs-on: ubuntu-latest
1010
steps:
11-
- uses: actions/checkout@v5
11+
- uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5
1212

1313
- name: Set up Python
14-
uses: actions/setup-python@v6
14+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6
1515
with:
1616
python-version: '3.11'
1717

@@ -27,7 +27,7 @@ jobs:
2727
run: twine check dist/*
2828

2929
- name: Upload build artifacts
30-
uses: actions/upload-artifact@v6
30+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
3131
with:
3232
name: dist
3333
path: dist/
@@ -40,12 +40,12 @@ jobs:
4040

4141
steps:
4242
- name: Download build artifacts
43-
uses: actions/download-artifact@v7
43+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
4444
with:
4545
name: dist
4646
path: dist/
4747

4848
- name: Publish to PyPI
49-
uses: pypa/gh-action-pypi-publish@release/v1
49+
uses: pypa/gh-action-pypi-publish@ed0c53931b1dc9bd32cbe73a98c7f6766f8a527e # release/v1
5050
with:
5151
packages-dir: dist/

0 commit comments

Comments
 (0)