Skip to content

Commit 8dc20b2

Browse files
authored
fix: pin GitHub Actions to commit SHAs (INT-326) (#33)
## Info - Pins all `uses:` references in GitHub Actions workflows to full commit SHAs. ## References - https://docs.github.com/en/actions/reference/security/secure-use#using-third-party-actions
1 parent dd65e33 commit 8dc20b2

2 files changed

Lines changed: 2 additions & 2 deletions

File tree

.github/workflows/trunk-upgrade.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2121

2222
- name: Run Trunk Upgrade
23-
uses: masterpointio/github-action-trunk-upgrade@fix/admin-permissions
23+
uses: masterpointio/github-action-trunk-upgrade@a79fd65d524d92031fe167daee411d2f25d4a999 # v0.1.0
2424
with:
2525
app-id: ${{ secrets.MP_BOT_APP_ID }}
2626
app-private-key: ${{ secrets.MP_BOT_APP_PRIVATE_KEY }}

action.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -63,7 +63,7 @@ runs:
6363

6464
- name: Configure AWS Credentials
6565
if: ${{ inputs.aws_role_arn != '' || env.TF_TEST_AWS_ROLE_ARN != '' }}
66-
uses: aws-actions/configure-aws-credentials@8df5847569e6427dd6c4fb1cf565c83acfa8afa7 # v6.0.0
66+
uses: aws-actions/configure-aws-credentials@ec61189d14ec14c8efccab744f656cffd0e33f37 # v6.1.0
6767
with:
6868
role-to-assume: ${{ inputs.aws_role_arn || env.TF_TEST_AWS_ROLE_ARN }}
6969
role-session-name: ${{ inputs.role_session_name }}

0 commit comments

Comments
 (0)