Skip to content

ci: Harden GitHub Actions #48

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
AndreasAlbertQC merged 1 commit into from
Jun 4, 2025
Merged

ci: Harden GitHub Actions #48

AndreasAlbertQC merged 1 commit into from
Jun 4, 2025

Conversation

@step-security-bot
Copy link
Contributor

@step-security-bot step-security-bot commented Jun 4, 2025

Summary

This pull request is created by StepSecurity at the request of @xhochy. Please merge the Pull Request to incorporate the requested changes. Please tag @xhochy on your message if you have any questions related to the PR.

Security Fixes

Pinned Dependencies

GitHub Action tags and Docker tags are mutable. This poses a security risk. GitHub's Security Hardening guide recommends pinning actions to full length commit.

Feedback

For bug reports, feature requests, and general feedback; please email [email protected]. To create such PRs, please visit https://app.stepsecurity.io/securerepo.

Signed-off-by: StepSecurity Bot [email protected]

@xhochy xhochy changed the title [StepSecurity] ci: Harden GitHub Actions ci: Harden GitHub Actions Jun 4, 2025
@github-actions github-actions bot added the ci label Jun 4, 2025
@AndreasAlbertQC AndreasAlbertQC enabled auto-merge (squash) June 4, 2025 12:52
@codecov
Copy link

codecov bot commented Jun 4, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (b606caa) to head (2da25dd).
Report is 1 commits behind head on main.

Additional details and impacted files 
@@            Coverage Diff            @@
##              main       #48   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           39        39           
  Lines         1893      1893           
=========================================
  Hits          1893      1893

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@AndreasAlbertQC AndreasAlbertQC merged commit 1a8f64e into Quantco:main Jun 4, 2025
19 of 20 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@xhochy xhochy xhochy approved these changes

@AndreasAlbertQC AndreasAlbertQC AndreasAlbertQC approved these changes

@borchero borchero Awaiting requested review from borchero borchero is a code owner

@delsner delsner Awaiting requested review from delsner delsner is a code owner

Assignees

No one assigned

Labels

ci

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@step-security-bot @xhochy @AndreasAlbertQC