Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Pin action versions and add permissions to workflows #1378

Merged
merged 2 commits into from
Dec 27, 2024
Merged

Pin action versions and add permissions to workflows #1378

merged 2 commits into from
Dec 27, 2024
+21 −8

Conversation

Kesin11
Copy link
Owner

@Kesin11 Kesin11 commented Dec 27, 2024

Pin specific commit hashes for third-party actions and explicitly define permissions for workflows to enhance security and control.

@Kesin11 Kesin11 added the ci Fix only CI label Dec 27, 2024
github-advanced-security[bot]
github-advanced-security bot found potential problems Dec 27, 2024
View reviewed changes
.github/workflows/ci.yml Fixed Show fixed Hide fixed
.github/workflows/ci.yml Fixed Show fixed Hide fixed
.github/workflows/ci.yml Fixed Show fixed Hide fixed
.github/workflows/ci.yml Fixed Show fixed Hide fixed
.github/workflows/release.yml Fixed Show fixed Hide fixed
@github-actions GitHub Actions
Copy link

Code Metrics Report

master (a3dd9e1) fix_gha_security (cd3755d) +/-
Coverage 30.6% 30.6% 0.0%
Test Execution Time 5s 6s +1s
Details 
  |                     | master (a3dd9e1) | fix_gha_security (cd3755d) | +/-  |
  |---------------------|------------------|----------------------------|------|
  | Coverage            |            30.6% |                      30.6% | 0.0% |
  |   Files             |               45 |                         45 |    0 |
  |   Lines             |             3851 |                       3851 |    0 |
  |   Covered           |             1182 |                       1182 |    0 |
- | Test Execution Time |               5s |                         6s |  +1s |

Reported by octocov

@Kesin11 Kesin11 merged commit 82b522f into master Dec 27, 2024
12 checks passed
@Kesin11 Kesin11 deleted the fix_gha_security branch December 27, 2024 05:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
ci Fix only CI
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Kesin11