File tree Expand file tree Collapse file tree 2 files changed +16
-3
lines changed
Expand file tree Collapse file tree 2 files changed +16
-3
lines changed Original file line number Diff line number Diff line change 1212 schedule :
1313 - cron : ' 11 17 * * 1' # Run every Monday at 5:11 PM UTC
1414
15+ permissions :
16+ contents : read
17+
1518jobs :
1619 check-models :
1720 runs-on : ubuntu-latest
2124 id-token : write
2225
2326 steps :
27+ - name : Harden the runner (Audit all outbound calls)
28+ uses : step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
29+ with :
30+ egress-policy : audit
31+
2432 - name : Checkout repository
25- uses : actions/checkout@v4
33+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
2634
2735 - name : Fetch documentation page
2836 id : fetch_docs
3240 .github/scripts/scrape-models.sh
3341
3442name : Upload scraped data as artifact
35- uses : actions/upload-artifact@v4
43+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
3644 with :
3745 name : scraped-data
3846 path : |
@@ -149,7 +157,7 @@ jobs:
149157
150158name : Create GitHub Issue if models are missing
151159 if : steps.check_missing.outputs.needs_update == 'true'
152- uses : actions/github-script@v7
160+ uses : actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7.1.0
153161 env :
154162 ISSUE_BODY : ${{ steps.check_missing.outputs.issue_body }}
155163 with :
Original file line number Diff line number Diff line change 1313 permissions :
1414 issues : write
1515 steps :
16+ - name : Harden the runner (Audit all outbound calls)
17+ uses : step-security/harden-runner@20cf305ff2072d973412fa9b1e3a4f227bda3c76 # v2.14.0
18+ with :
19+ egress-policy : audit
20+
1621 - name : Tag user on new issue
1722 uses : devops-actions/issue-comment-tag@ec5e2b8d5f031330ff19bf4ee5b5252b1176995a # v0.1.8
1823 with :
You can’t perform that action at this time.
0 commit comments