Skip to content

Commit c709ec1

Browse files
Copilotpeterkir
Copilot
and
peterkir
authored
Pin all GitHub Actions uses directives to full commit SHA values (#36)
Agent-Logs-Url: https://github.com/klibio/example.pde.rcp/sessions/02975099-177e-4a13-9ba7-b20bd6e5fcfb Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: peterkir <250545+peterkir@users.noreply.github.com> Co-authored-by: Peter Kirschner <peter@klib.io>
1 parent 7e73c89 commit c709ec1

6 files changed

Lines changed: 38 additions & 38 deletions

File tree

.github/workflows/10_build-validation.yml

Lines changed: 26 additions & 26 deletions
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ jobs:
1717
steps:
1818

1919
- name: checkout
20-
uses: actions/checkout@v6
20+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
2121

2222
- uses: actions/setup-java@v5
2323
with:
@@ -58,21 +58,21 @@ jobs:
5858
[[ $NUM_REPO_SDK -ne 0 ]] & echo "sdk repo existing!"
5959
6060
- name: upload repo.binary
61-
uses: actions/upload-artifact@v7
61+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
6262
with:
6363
name: repo.binary
6464
path: releng/repo.binary/target/repo.binary-*.zip
6565
if-no-files-found: warn
6666

6767
- name: upload repo.sdk
68-
uses: actions/upload-artifact@v7
68+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
6969
with:
7070
name: repo.sdk
7171
path: releng/repo.sdk/target/repo.sdk-*.zip
7272
if-no-files-found: warn
7373

7474
- name: upload repo.products
75-
uses: actions/upload-artifact@v7
75+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
7676
with:
7777
name: repo.products
7878
path: releng/products/target/**/**/products-*.zip
@@ -200,155 +200,155 @@ jobs:
200200
201201
- name: upload styled test and coverage reports
202202
if: always()
203-
uses: actions/upload-artifact@v7
203+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
204204
with:
205205
name: ci-reports-styled
206206
path: .ci-reports/**
207207
if-no-files-found: warn
208208

209209
- name: upload coverage html
210210
if: always()
211-
uses: actions/upload-artifact@v7
211+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
212212
with:
213213
name: coverage-html
214214
path: tests/example.rcp.tests.reports/target/site/**
215215
if-no-files-found: warn
216216

217217
- name: upload feature-product linux x86_64
218-
uses: actions/upload-artifact@v7
218+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
219219
with:
220220
name: example.rcp.app.ui.feature.product-linux.gtk.x86_64
221221
path: releng/products/target/**/**/example.rcp.app.ui.feature.product-*linux.gtk.x86_64.tar.gz
222222
if-no-files-found: warn
223223

224224
- name: upload feature-product linux aarch64
225-
uses: actions/upload-artifact@v7
225+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
226226
with:
227227
name: example.rcp.app.ui.feature.product-linux.gtk.aarch64
228228
path: releng/products/target/**/example.rcp.app.ui.feature.product-*linux.gtk.aarch64.tar.gz
229229
if-no-files-found: warn
230230

231231
- name: upload feature-product macosx x86_64
232-
uses: actions/upload-artifact@v7
232+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
233233
with:
234234
name: example.rcp.app.ui.feature.product-macosx.cocoa.x86_64
235235
path: releng/products/target/**/example.rcp.app.ui.feature.product-*macosx.cocoa.x86_64.tar.gz
236236
if-no-files-found: warn
237237

238238
- name: upload feature-product macosx aarch64
239-
uses: actions/upload-artifact@v7
239+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
240240
with:
241241
name: example.rcp.app.ui.feature.product-macosx.cocoa.aarch64
242242
path: releng/products/target/**/example.rcp.app.ui.feature.product-*macosx.cocoa.aarch64.tar.gz
243243
if-no-files-found: warn
244244

245245
- name: upload feature-product win32 x86_64
246-
uses: actions/upload-artifact@v7
246+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
247247
with:
248248
name: example.rcp.app.ui.feature.product-win32.win32.x86_64
249249
path: releng/products/target/**/example.rcp.app.ui.feature.product-*win32.win32.x86_64.zip
250250
if-no-files-found: warn
251251

252252
- name: upload plugin-product linux x86_64
253-
uses: actions/upload-artifact@v7
253+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
254254
with:
255255
name: example.rcp.app.ui.plugin.product-linux.gtk.x86_64
256256
path: releng/products/target/**/example.rcp.app.ui.plugin.product-*linux.gtk.x86_64.tar.gz
257257
if-no-files-found: warn
258258

259259
- name: upload plugin-product linux aarch64
260-
uses: actions/upload-artifact@v7
260+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
261261
with:
262262
name: example.rcp.app.ui.plugin.product-linux.gtk.aarch64
263263
path: releng/products/target/**/example.rcp.app.ui.plugin.product-*linux.gtk.aarch64.tar.gz
264264
if-no-files-found: warn
265265

266266
- name: upload plugin-product macosx x86_64
267-
uses: actions/upload-artifact@v7
267+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
268268
with:
269269
name: example.rcp.app.ui.plugin.product-macosx.cocoa.x86_64
270270
path: releng/products/target/**/example.rcp.app.ui.plugin.product-*macosx.cocoa.x86_64.tar.gz
271271
if-no-files-found: warn
272272

273273
- name: upload plugin-product macosx aarch64
274-
uses: actions/upload-artifact@v7
274+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
275275
with:
276276
name: example.rcp.app.ui.plugin.product-macosx.cocoa.aarch64
277277
path: releng/products/target/**/example.rcp.app.ui.plugin.product-*macosx.cocoa.aarch64.tar.gz
278278
if-no-files-found: warn
279279

280280
- name: upload plugin-product win32 x86_64
281-
uses: actions/upload-artifact@v7
281+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
282282
with:
283283
name: example.rcp.app.ui.plugin.product-win32.win32.x86_64
284284
path: releng/products/target/**/example.rcp.app.ui.plugin.product-*win32.win32.x86_64.zip
285285
if-no-files-found: warn
286286

287287
- name: upload mixed-product linux x86_64
288-
uses: actions/upload-artifact@v7
288+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
289289
with:
290290
name: example.rcp.app.ui.mixed.product-linux.gtk.x86_64
291291
path: releng/products/target/**/example.rcp.app.ui.mixed.product-*linux.gtk.x86_64.tar.gz
292292
if-no-files-found: warn
293293

294294
- name: upload mixed-product linux aarch64
295-
uses: actions/upload-artifact@v7
295+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
296296
with:
297297
name: example.rcp.app.ui.mixed.product-linux.gtk.aarch64
298298
path: releng/products/target/**/example.rcp.app.ui.mixed.product-*linux.gtk.aarch64.tar.gz
299299
if-no-files-found: warn
300300

301301
- name: upload mixed-product macosx x86_64
302-
uses: actions/upload-artifact@v7
302+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
303303
with:
304304
name: example.rcp.app.ui.mixed.product-macosx.cocoa.x86_64
305305
path: releng/products/target/**/example.rcp.app.ui.mixed.product-*macosx.cocoa.x86_64.tar.gz
306306
if-no-files-found: warn
307307

308308
- name: upload mixed-product macosx aarch64
309-
uses: actions/upload-artifact@v7
309+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
310310
with:
311311
name: example.rcp.app.ui.mixed.product-macosx.cocoa.aarch64
312312
path: releng/products/target/**/example.rcp.app.ui.mixed.product-*macosx.cocoa.aarch64.tar.gz
313313
if-no-files-found: warn
314314

315315
- name: upload mixed-product win32 x86_64
316-
uses: actions/upload-artifact@v7
316+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
317317
with:
318318
name: example.rcp.app.ui.mixed.product-win32.win32.x86_64
319319
path: releng/products/target/**/example.rcp.app.ui.mixed.product-*win32.win32.x86_64.zip
320320
if-no-files-found: warn
321321

322322
- name: upload headless-product linux x86_64
323-
uses: actions/upload-artifact@v7
323+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
324324
with:
325325
name: example.rcp.headless.feature.product-linux.gtk.x86_64
326326
path: releng/products/target/**/example.rcp.headless.feature.product-*linux.gtk.x86_64.tar.gz
327327
if-no-files-found: warn
328328

329329
- name: upload headless-product linux aarch64
330-
uses: actions/upload-artifact@v7
330+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
331331
with:
332332
name: example.rcp.headless.feature.product-linux.gtk.aarch64
333333
path: releng/products/target/**/example.rcp.headless.feature.product-*linux.gtk.aarch64.tar.gz
334334
if-no-files-found: warn
335335

336336
- name: upload headless-product macosx x86_64
337-
uses: actions/upload-artifact@v7
337+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
338338
with:
339339
name: example.rcp.headless.feature.product-macosx.cocoa.x86_64
340340
path: releng/products/target/**/example.rcp.headless.feature.product-*macosx.cocoa.x86_64.tar.gz
341341
if-no-files-found: warn
342342

343343
- name: upload headless-product macosx aarch64
344-
uses: actions/upload-artifact@v7
344+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
345345
with:
346346
name: example.rcp.headless.feature.product-macosx.cocoa.aarch64
347347
path: releng/products/target/**/example.rcp.headless.feature.product-*macosx.cocoa.aarch64.tar.gz
348348
if-no-files-found: warn
349349

350350
- name: upload headless-product win32 x86_64
351-
uses: actions/upload-artifact@v7
351+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
352352
with:
353353
name: example.rcp.headless.feature.product-win32.win32.x86_64
354354
path: releng/products/target/**/example.rcp.headless.feature.product-*win32.win32.x86_64.zip

.github/workflows/20_snapshot-deployment.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -19,7 +19,7 @@ jobs:
1919
steps:
2020

2121
- name: checkout
22-
uses: actions/checkout@v6
22+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
2323

2424
- uses: actions/setup-java@v5
2525
with:

.github/workflows/30_release-deployment.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -26,7 +26,7 @@ jobs:
2626
steps:
2727

2828
- name: checkout
29-
uses: actions/checkout@v6
29+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
3030

3131
- uses: actions/setup-java@v5
3232
with:

.github/workflows/40_product-validation.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,7 @@ jobs:
3737
steps:
3838

3939
- name: checkout
40-
uses: actions/checkout@v6
40+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
4141

4242
- uses: actions/setup-java@v5
4343
with:
@@ -459,7 +459,7 @@ jobs:
459459
# ----------------------------------------------------------------
460460
- name: upload product logs
461461
if: always()
462-
uses: actions/upload-artifact@v7
462+
uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7
463463
with:
464464
name: product-logs-${{ matrix.platform }}
465465
path: products/**/*.log

.github/workflows/codeql.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -19,15 +19,15 @@ jobs:
1919

2020
steps:
2121
- name: Checkout
22-
uses: actions/checkout@v6
22+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
2323

2424
- uses: actions/setup-java@v5
2525
with:
2626
distribution: 'temurin'
2727
java-version: '21'
2828

2929
- name: Initialize CodeQL
30-
uses: github/codeql-action/init@v4
30+
uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4
3131
with:
3232
languages: java
3333

@@ -46,6 +46,6 @@ jobs:
4646
continue-on-error: true
4747

4848
- name: Perform CodeQL Analysis
49-
uses: github/codeql-action/analyze@v4
49+
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4
5050
with:
5151
category: "/language:java"

.github/workflows/jekyll-gh-pages.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -34,18 +34,18 @@ jobs:
3434
if: ${{ github.event_name != 'workflow_run' || github.event.workflow_run.conclusion == 'success' }}
3535
steps:
3636
- name: Checkout
37-
uses: actions/checkout@v6
37+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
3838
- name: Inject source revision for docs
3939
run: 'echo "source_revision: ${GITHUB_SHA}" >> _doc/_config.yml'
4040
- name: Setup Pages
41-
uses: actions/configure-pages@v6
41+
uses: actions/configure-pages@45bfe0192ca1faeb007ade9deae92b16b8254a0d # v6
4242
- name: Build with Jekyll
43-
uses: actions/jekyll-build-pages@v1
43+
uses: actions/jekyll-build-pages@44a6e6beabd48582f863aeeb6cb2151cc1716697 # v1
4444
with:
4545
source: ./_doc
4646
destination: ./_site
4747
- name: Upload artifact
48-
uses: actions/upload-pages-artifact@v4
48+
uses: actions/upload-pages-artifact@7b1f4a764d45c48632c6b24a0339c27f5614fb0b # v4
4949

5050
# Deployment job
5151
deploy:
@@ -57,4 +57,4 @@ jobs:
5757
steps:
5858
- name: Deploy to GitHub Pages
5959
id: deployment
60-
uses: actions/deploy-pages@v5
60+
uses: actions/deploy-pages@cd2ce8fcbc39b97be8ca5fce6e763baed58fa128 # v5

0 commit comments

Comments
 (0)