Skip to content

Commit fc8d5f2

Browse files
committed
Build: Pin some action versions.
1 parent 1974518 commit fc8d5f2

2 files changed

Lines changed: 19 additions & 15 deletions

File tree

.github/workflows/ci.yml

Lines changed: 16 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -25,10 +25,11 @@ jobs:
2525
runs-on: ubuntu-latest
2626

2727
steps:
28-
- uses: actions/checkout@v6.0.2
28+
- name: Check out project
29+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
2930

3031
- name: Set up Python
31-
uses: actions/setup-python@v6.2.0
32+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
3233
with:
3334
python-version: "3.12"
3435

@@ -40,7 +41,7 @@ jobs:
4041
run: make sdist
4142

4243
- name: Archive sdist
43-
uses: actions/upload-artifact@v7
44+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
4445
with:
4546
name: sdist
4647
path: dist/*.tar.gz
@@ -75,10 +76,11 @@ jobs:
7576
runs-on: ${{ matrix.os }}
7677

7778
steps:
78-
- uses: actions/checkout@v6.0.2
79+
- name: Check out project
80+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
7981

8082
- name: Set up Python
81-
uses: actions/setup-python@v6.2.0
83+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
8284
with:
8385
python-version: ${{ matrix.python-version }}
8486

@@ -138,10 +140,11 @@ jobs:
138140
runs-on: ubuntu-latest
139141

140142
steps:
141-
- uses: actions/checkout@v6.0.2
143+
- name: Check out project
144+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
142145

143146
- name: Set up Python
144-
uses: actions/setup-python@v6.2.0
147+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
145148
with:
146149
python-version: "3.12"
147150

@@ -157,7 +160,7 @@ jobs:
157160
run: cp -v wheelhouse*/*-m*linux*.whl dist/ # manylinux / musllinux
158161

159162
- name: Archive Wheels
160-
uses: actions/upload-artifact@v7
163+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
161164
with:
162165
name: wheels-${{ matrix.image }}-${{ matrix.pyversion }}
163166
path: dist/*.whl
@@ -191,10 +194,11 @@ jobs:
191194
env: { MACOSX_DEPLOYMENT_TARGET: 11.0 }
192195

193196
steps:
194-
- uses: actions/checkout@v6.0.2
197+
- name: Check out project
198+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
195199

196200
- name: Set up Python
197-
uses: actions/setup-python@v6.2.0
201+
uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0
198202
with:
199203
python-version: ${{ matrix.python-version }}
200204

@@ -210,7 +214,7 @@ jobs:
210214
run: make testslow
211215

212216
- name: Upload wheels
213-
uses: actions/upload-artifact@v7
217+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
214218
with:
215219
name: wheels-${{ matrix.os }}-${{ matrix.python-version }}
216220
path: dist/*.whl
@@ -231,7 +235,7 @@ jobs:
231235

232236
steps:
233237
- name: Merge wheels
234-
uses: actions/upload-artifact/merge@v7
238+
uses: actions/upload-artifact/merge@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
235239
with:
236240
name: all_wheels
237241
pattern: wheels-*

.github/workflows/wheels.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -115,7 +115,7 @@ jobs:
115115

116116
- name: Set up QEMU
117117
if: runner.os == 'Linux'
118-
uses: docker/setup-qemu-action@v4
118+
uses: docker/setup-qemu-action@ce360397dd3f832beb865e1373c09c0e9f86d70a # v4.0.0
119119
with:
120120
platforms: all
121121

@@ -235,7 +235,7 @@ jobs:
235235

236236
steps:
237237
- name: Merge wheels
238-
uses: actions/upload-artifact/merge@v7
238+
uses: actions/upload-artifact/merge@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
239239
with:
240240
name: all_wheels
241241
pattern: wheels-*
@@ -268,6 +268,6 @@ jobs:
268268
run: python3 dedup_wheels.py -d ./dist_downloads
269269

270270
- name: Release
271-
uses: softprops/action-gh-release@v2
271+
uses: softprops/action-gh-release@153bb8e04406b158c6c84fc1615b65b24149a1fe # v2.6.1
272272
with:
273273
files: ./dist_downloads/*

0 commit comments

Comments
 (0)