Closed vgrassia closed 7 months ago
Checkmarx One – Scan Summary & Details – c83a4bdf-e5e4-41b3-8158-d33b35382979
Severity | Issue | Source File / Package | Checkmarx Insight |
---|---|---|---|
Unpinned Actions Full Length Commit SHA | /version-bump.yml: 88 | Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps... |
Severity | Issue | Source File / Package |
---|---|---|
Unpinned Actions Full Length Commit SHA | /version-bump.yml: 79 |
Type of change
Objective
This PR updates the logic in the Version Bump workflow so that it will check for the existence of a current
rc
branch, if necessary, before creating the PR to bump the client version. Thecut_rc
job has been updated to make sure the version bump PR has been merged before cutting therc
branch.Code changes
Before you submit
npm run lint
) (required)