Skip to content

Commit a5f1c89

Browse files
committed
chore(security): pin down actions to commit SHA
Signed-off-by: Keshav Priyadarshi <git@keshav.space>
1 parent 37202bc commit a5f1c89

File tree

4 files changed

+8
-8
lines changed

4 files changed

+8
-8
lines changed

.github/workflows/ci.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -36,10 +36,10 @@ jobs:
3636

3737
steps:
3838
- name: Checkout source
39-
uses: actions/checkout@v4
39+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4040

4141
- name: Install Rust
42-
uses: dtolnay/rust-toolchain@stable
42+
uses: dtolnay/rust-toolchain@aad518f59d88bae90133242f9ddac7f8bbc5dddf #v1.94.1
4343
with:
4444
components: rustfmt, clippy
4545

.github/workflows/collect-purls_template.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -46,7 +46,7 @@ jobs:
4646
> "${{ inputs.ecosystem }}.txt"
4747
4848
- name: Checkout repository
49-
uses: actions/checkout@v4
49+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
5050

5151
- name: Commit and push if it changed
5252
run: |-

.github/workflows/release.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -14,15 +14,15 @@ jobs:
1414
id-token: write
1515
contents: write
1616
steps:
17-
- uses: actions/checkout@v5
18-
- uses: rust-lang/crates-io-auth-action@v1
17+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
18+
- uses: rust-lang/crates-io-auth-action@bbd81622f20ce9e2dd9622e3218b975523e45bbe #v1.0.4
1919
id: auth
2020
- run: cargo publish
2121
env:
2222
CARGO_REGISTRY_TOKEN: ${{ steps.auth.outputs.token }}
2323

2424
- name: Create a GitHub release
25-
uses: softprops/action-gh-release@v2
25+
uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0
2626
with:
2727
generate_release_notes: true
2828
draft: false

.github/workflows/sync-purls.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -38,12 +38,12 @@ jobs:
3838
runs-on: ubuntu-latest
3939
steps:
4040
- name: Checkout source
41-
uses: actions/checkout@v4
41+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4242
with:
4343
token: ${{ secrets.GH_TAG_RELEASE_TOKEN }}
4444

4545
- name: Install Rust
46-
uses: dtolnay/rust-toolchain@stable
46+
uses: dtolnay/rust-toolchain@aad518f59d88bae90133242f9ddac7f8bbc5dddf #v1.94.1
4747

4848
- name: Install cargo-edit
4949
run: cargo install cargo-edit

0 commit comments

Comments
 (0)