Skip to content

Commit ca95adb

Browse files
achrinzaachrinza
committed
ci: pin GitHub Actions Git hash
see: loopbackio/security#27 Signed-off-by: Rifa Achrinza <[email protected]>
1 parent d17b241 commit ca95adb

File tree

1 file changed

+11
-12
lines changed

1 file changed

+11
-12
lines changed

.github/workflows/continuous-integration.yaml

Lines changed: 11 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -28,17 +28,17 @@ jobs:
2828
node_version: 16
2929
fail-fast: false
3030
steps:
31-
- uses: actions/checkout@v3
31+
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2
3232
- name: Use Node.js ${{ matrix.node-version }}
33-
uses: actions/setup-node@v3
33+
uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 # tag=v3.4.1
3434
with:
3535
node-version: ${{ matrix.node-version }}
3636
- name: Bootstrap project
3737
run: npm ci --ignore-scripts
3838
- name: Run tests
3939
run: npm run-script test:ci
4040
- name: Publish coverage report to Coveralls
41-
uses: coverallsapp/github-action@master
41+
uses: coverallsapp/github-action@9ba913c152ae4be1327bfb9085dc806cedb44057 # tag=v1.1.3
4242
with:
4343
github-token: ${{ secrets.GITHUB_TOKEN }}
4444
flag-name: run-${{ matrix.os }}-node@${{ matrix.node-version }}
@@ -50,7 +50,7 @@ jobs:
5050
runs-on: ubuntu-latest
5151
steps:
5252
- name: Coveralls finished
53-
uses: coverallsapp/github-action@master
53+
uses: coverallsapp/github-action@9ba913c152ae4be1327bfb9085dc806cedb44057 # tag=v1.1.3
5454
with:
5555
github-token: ${{ secrets.github_token }}
5656
parallel-finished: true
@@ -59,9 +59,9 @@ jobs:
5959
name: Code Lint
6060
runs-on: ubuntu-latest
6161
steps:
62-
- uses: actions/checkout@v3
62+
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2
6363
- name: Use Node.js 16
64-
uses: actions/setup-node@v3
64+
uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 # tag=v3.4.1
6565
with:
6666
node-version: 16
6767
- name: Bootstrap project
@@ -73,11 +73,11 @@ jobs:
7373
name: Commit Lint
7474
runs-on: ubuntu-latest
7575
steps:
76-
- uses: actions/checkout@v3
76+
- uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2
7777
with:
7878
fetch-depth: 0
7979
- name: Use Node.js 16
80-
uses: actions/setup-node@v3
80+
uses: actions/setup-node@2fddd8803e2f5c9604345a0b591c3020ee971a93 # tag=v3.4.1
8181
with:
8282
node-version: 16
8383
- name: Bootstrap project
@@ -101,13 +101,12 @@ jobs:
101101
security-events: write
102102
steps:
103103
- name: Checkout repository
104-
uses: actions/checkout@v3
105-
104+
uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # tag=v3.0.2
106105
- name: Initialize CodeQL
107-
uses: github/codeql-action/init@v1
106+
uses: github/codeql-action/init@c7f292ea4f542c473194b33813ccd4c207a6c725 # tag=v2.1.21
108107
with:
109108
languages: 'javascript'
110109
config-file: ./.github/codeql/codeql-config.yaml
111110

112111
- name: Perform CodeQL Analysis
113-
uses: github/codeql-action/analyze@v1
112+
uses: github/codeql-action/analyze@c7f292ea4f542c473194b33813ccd4c207a6c725 # tag=v2.1.21

0 commit comments

Comments
 (0)