Skip to content

Commit

Permalink
Change: pin non-greenbone actions to hash
Browse files Browse the repository at this point in the history
  • Loading branch information
amy-gb committed Jan 17, 2025
1 parent f5e7313 commit ad2a84e
Show file tree
Hide file tree
Showing 2 changed files with 6 additions and 6 deletions.
8 changes: 4 additions & 4 deletions .github/workflows/ci-python.yml
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ jobs:
- '3.11'
- '3.12'
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Install and check with black, pylint and pontos.version
uses: greenbone/actions/lint-python@v3
with:
Expand All @@ -31,7 +31,7 @@ jobs:
- '3.11'
- '3.12'
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Install python, poetry and dependencies
uses: greenbone/actions/poetry@v3
with:
Expand All @@ -46,7 +46,7 @@ jobs:
needs: test
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v4
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Install python, poetry and dependencies
uses: greenbone/actions/poetry@v3
with:
Expand All @@ -61,7 +61,7 @@ jobs:
- name: Create coverage XML report
run: poetry run coverage xml
- name: Upload coverage to codecov.io
uses: codecov/codecov-action@v5
uses: codecov/codecov-action@1e68e06f1dbfde0e4cefc87efeba9e4643565303 # v5.1.2
with:
token: ${{ secrets.CODECOV_TOKEN }}
fail_ci_if_error: true
4 changes: 2 additions & 2 deletions .github/workflows/codeql.yml
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,7 @@ jobs:

steps:
- name: Checkout repository
uses: actions/checkout@v4
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
Expand All @@ -35,6 +35,6 @@ jobs:
queries: security-and-quality

- name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3
uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
with:
category: "/language:${{matrix.language}}"

0 comments on commit ad2a84e

Please sign in to comment.