mirrors/zed
1
0
Fork 0
mirror of https://github.com/zed-industries/zed.git synced 2024-10-23 14:59:50 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 5

renovate: Pin GitHub Action versions with SHAs (#15184)

Browse source 
This PR updates the Renovate config to pin all GitHub Action versions to
SHAs.

From the Renovate docs:

> The [GitHub Docs, using third-party
actions](https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions)
recommend that you pin third-party GitHub Actions to a full-length
commit SHA.
>
> We recommend pinning all Actions. That's why the
helpers:pinGitHubActionDigests preset pins all GitHub Actions.
>
> For an in-depth explanation why you should pin your Github Actions,
read the [Palo Alto Networks blog post about the GitHub Actions
worm](https://www.paloaltonetworks.com/blog/prisma-cloud/github-actions-worm-dependencies/).

Release Notes:

- N/A
This commit is contained in:
Marshall Bowers 2024-07-25 09:02:48 -04:00 committed by GitHub
parent 8ba392bba6
commit 3246a932ca
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
renovate.json
View file

@ -4,6 +4,7 @@
"config:recommended",
":semanticCommitsDisabled",
":separateMultipleMajorReleases",
"helpers:pinGitHubActionDigests",
"group:serdeMonorepo"
],
"dependencyDashboard": true,