Skip to content
This repository was archived by the owner on Jul 23, 2025. It is now read-only.

Replace unpinned actions with pinned action#29

Merged
JAORMX merged 1 commit intomainfrom
minder_replace_unpinned_actions_with_pinned_action
Jan 10, 2025
Merged

Replace unpinned actions with pinned action#29
JAORMX merged 1 commit intomainfrom
minder_replace_unpinned_actions_with_pinned_action

Conversation

@ghost
Copy link

@ghost ghost commented Jan 10, 2025

This is a Minder automated pull request.

This pull request replaces references to actions by tag to references to actions by SHA.

Verifies that any actions use pinned tags
Pinning an action to a full length commit SHA is currently the only way to use
an action as an immutable release. Pinning to a particular SHA helps mitigate
the risk of a bad actor adding a backdoor to the action's repository, as they
would need to generate a SHA-1 collision for a valid Git object payload.
When selecting a SHA, you should verify it is from the action's repository
and not a repository fork.

For more information, see
https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions

@vercel
Copy link

vercel bot commented Jan 10, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
codegate-docs ✅ Ready (Inspect) Visit Preview 💬 Add feedback Jan 10, 2025 8:29am

@JAORMX JAORMX merged commit 1fc70c5 into main Jan 10, 2025
6 checks passed
@JAORMX JAORMX deleted the minder_replace_unpinned_actions_with_pinned_action branch January 10, 2025 08:33
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@JAORMX