IT4Change / IT4C.dev

IT4C.dev Website
https://www.it4c.dev
Apache License 2.0
5 stars 1 forks source link

refactor(workflow): pin all github actions by commit hash #196

Open mahula opened 3 days ago

mahula commented 3 days ago

Motivation

This comment on Github Action versions in Github workflows emphasizes the importance of taking measures to reduce the risk of being affected by supply chain attacks. One Measure is pinning the Github Actions in our workflows by commit hash rather than by tag.

How to test

Just see the workflows work.