firezone

github-personal/firezone

Fork 0

mirror of https://github.com/outbackdingo/firezone.git synced 2026-01-28 10:18:51 +00:00

Commit Graph

Author	SHA1	Message	Date
Thomas Eizinger	d26df944c0	ci: reference GitHub actions by hash (#7724 ) To improve supply-chain security, reference all GitHub actions using the hash of the released tag. GitHub recommends to do this for third-party actions (https://docs.github.com/en/actions/security-for-github-actions/security-guides/security-hardening-for-github-actions#using-third-party-actions). In order to make our CI more deterministic, I opted to do it for all our actions. This means any change to our workflow configuration requires a source code change and thus passing CI on our end. Dependabot will automatically issue PRs for these actions and update the comment with the new version next to them. Resolves: #2497.	2025-01-12 17:35:52 +00:00
Thomas Eizinger	21ab270ebc	ci(android): be explicit about NDK version (#7119 )	2024-10-22 02:38:44 +00:00

Author

SHA1

Message

Date

Thomas Eizinger

d26df944c0

ci: reference GitHub actions by hash (#7724 )

To improve supply-chain security, reference all GitHub actions using the
hash of the released tag. GitHub recommends to do this for third-party
actions
(https://docs.github.com/en/actions/security-for-github-actions/security-guides/security-hardening-for-github-actions#using-third-party-actions).
In order to make our CI more deterministic, I opted to do it for all our
actions. This means any change to our workflow configuration requires a
source code change and thus passing CI on our end.

Dependabot will automatically issue PRs for these actions and update the
comment with the new version next to them.

Resolves: #2497.

2025-01-12 17:35:52 +00:00

Thomas Eizinger

21ab270ebc

ci(android): be explicit about NDK version (#7119 )

2024-10-22 02:38:44 +00:00

2 Commits