Elgato_dark/python-tuf
1
0
Fork 0
mirror of https://github.com/theupdateframework/python-tuf synced 2026-05-24 10:08:28 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
python-tuf/.github/workflows
History
Jussi Kukkonen d5c953d575 workflows: Partially revert action versions 
Commit f0058259 started not pinning hashes for actions that are used in
workflows that have no runtime or build security impact.

The change does not work for scorecard as scorecard does not tag "v2":
so we have to pin it. Luckily scorecard does not do that many releases.

Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
2023-10-09 18:40:56 +03:00
..
_test.yml build(deps): bump actions/setup-python from 4.7.0 to 4.7.1 2023-10-03 11:01:32 +00:00
cd.yml build(deps): bump actions/setup-python from 4.7.0 to 4.7.1 2023-10-03 11:01:32 +00:00
ci.yml workflows: Set top-level permissions 2022-10-30 12:56:22 +02:00
codeql-analysis.yml workflows: Stop pinning actions that are not security relevant 2023-10-02 13:34:24 +03:00
dependency-review.yml workflows: Stop pinning actions that are not security relevant 2023-10-02 13:34:24 +03:00
maintainer-permissions-reminder.yml version numbers are commented respectively 2023-09-06 13:10:40 +05:30
scorecards.yml workflows: Partially revert action versions 2023-10-09 18:40:56 +03:00
specification-version-check.yml build(deps): bump actions/setup-python from 4.7.0 to 4.7.1 2023-10-03 11:01:32 +00:00