Closed jtduffy closed 5 months ago
All modified and coverable lines are covered by tests :white_check_mark:
Project coverage is 70.65%. Comparing base (
1b74085
) to head (befb70d
). Report is 5 commits behind head on main.
:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.
Overview
Pinning Actions to Commit SHAs Instead of Tags
For security reasons, actions in github workflows should be pinned by a commit SHA rather than a tag. A node based tool exists to automate this: pin-github-action.
This tool can be run locally whenever a
uses
action is added or change in a workflow file. Instructions exist in the tool's README that explain installation and execution.Updated
uses
keys will have a comment at the end specifying what version they we're previously pinned at. For example: