Pin Forgejo Actions by commit SHA (#45) #58
No reviewers
Labels
No labels
area:auth
area:ci
area:db
area:infra
area:native
area:pwa
area:service
epic
feature
foundation
No milestone
No project
No assignees
1 participant
Notifications
Due date
No due date set.
Dependencies
No dependencies set.
Reference
james/carol!58
Loading…
Add table
Add a link
Reference in a new issue
No description provided.
Delete branch "45-pin-actions-sha"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Closes #45.
Summary
uses: actions/...@vX.Y.Zline in.forgejo/workflows/pr.ymltouses: actions/...@<full-40-char-sha> # vX.Y.Z. Tags resolved fromcode.forgejo.org(the runner's default action registry):actions/checkout@v6.0.3→9f698171ed81b15d1823a05fc7211befd50c8ae0actions/setup-node@v6.4.0→48b55a011bda9f5d6aeb4c2d9c7362e8dae4041eCLAUDE.mdunder Working in this repo, with the mutable-tag rationale and the canonical line shape so future workflow edits stay SHA-pinned.Acceptance criteria
uses:line in.forgejo/workflows/references a mutable tag without a SHA pin.Test plan
grep -n 'uses:' .forgejo/workflows/pr.ymlshows every line ends in# vX.Y.Z.