Skip to content

Commit

Permalink
Merge pull request #1107 from step-security-bot/stepsecurity_remediat…
Browse files Browse the repository at this point in the history 
…ion_1725846128

[StepSecurity] ci: Harden GitHub Actions
  • Loading branch information
@rjdbcm
rjdbcm authored Sep 9, 2024
2 parents 1052fec + 5319714 commit d48eba7
Show file tree
Hide file tree
Showing 2 changed files with 7 additions and 7 deletions.
6 changes: 3 additions & 3 deletions .github/workflows/dev-workflow.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ jobs:
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/checkpoint@1.0.0
- uses: OZI-Project/checkpoint@b53cf4f0aeb004d5980b72675fba6a38dcc66674 # 1.0.0
with:
python-version: "3.10"

Expand Down Expand Up @@ -68,7 +68,7 @@ jobs:
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/checkpoint@1.0.0
- uses: OZI-Project/checkpoint@b53cf4f0aeb004d5980b72675fba6a38dcc66674 # 1.0.0
with:
python-version: "3.11"

Expand Down Expand Up @@ -98,6 +98,6 @@ jobs:
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/checkpoint@1.0.0
- uses: OZI-Project/checkpoint@b53cf4f0aeb004d5980b72675fba6a38dcc66674 # 1.0.0
with:
python-version: "3.12"
8 changes: 4 additions & 4 deletions .github/workflows/dist-workflow.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@ jobs:
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/checkpoint@0.5.2
- uses: OZI-Project/checkpoint@b53cf4f0aeb004d5980b72675fba6a38dcc66674 # 1.0.0
with:
python-version: "3.10"
parallel: false
Expand Down Expand Up @@ -71,7 +71,7 @@ jobs:
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/checkpoint@0.5.2
- uses: OZI-Project/checkpoint@b53cf4f0aeb004d5980b72675fba6a38dcc66674 # 1.0.0
with:
python-version: "3.11"
parallel: false
Expand Down Expand Up @@ -102,7 +102,7 @@ jobs:
tuf-repo-cdn.sigstore.dev:443
oauth2.sigstore.dev:443
- uses: OZI-Project/checkpoint@0.5.2
- uses: OZI-Project/checkpoint@b53cf4f0aeb004d5980b72675fba6a38dcc66674 # 1.0.0
with:
python-version: "3.12"
parallel: false
Expand Down Expand Up @@ -188,7 +188,7 @@ jobs:
downloads.python.org:443
oauth2.sigstore.dev:443
- uses: OZI-Project/release@1.0.0
- uses: OZI-Project/release@98248899bb8b235e3198105f080093ea5b9751d8 # 1.0.0
id: release
with:
tag: ${{ needs.draft.outputs.tag }}
Expand Down

0 comments on commit d48eba7

Please sign in to comment.