Skip to content

Commit 680590f

Browse files
zaniebzanieb
authored
Pin all of the actions (#763)
Closes #760
1 parent ce0f50a commit 680590f

File tree

5 files changed

+49
-49
lines changed

5 files changed

+49
-49
lines changed

.github/workflows/check.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -19,10 +19,10 @@ jobs:
1919
runs-on: "ubuntu-latest"
2020
name: "check"
2121
steps:
22-
- uses: actions/checkout@v4
22+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
2323
with:
2424
persist-credentials: false
25-
- uses: actions/setup-python@v5
25+
- uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
2626
with:
2727
python-version: "3.12"
2828

.github/workflows/linux.yml

Lines changed: 24 additions & 24 deletions
Original file line numberDiff line numberDiff line change
@@ -29,15 +29,15 @@ jobs:
2929
sudo apt update
3030
sudo apt install -y --no-install-recommends libssl-dev pkg-config
3131
32-
- uses: actions/checkout@v4
32+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
3333
with:
3434
persist-credentials: false
3535

3636
- name: Emit rustc version
3737
run: |
3838
rustc --version > .rustc-version
3939
40-
- uses: actions/cache@v4
40+
- uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
4141
with:
4242
path: |
4343
~/.cargo/registry
@@ -50,7 +50,7 @@ jobs:
5050
cargo build --release
5151
5252
- name: Upload pythonbuild Executable
53-
uses: actions/upload-artifact@v4
53+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
5454
with:
5555
name: ${{ matrix.crate_artifact_name }}
5656
path: target/release/pythonbuild
@@ -67,20 +67,20 @@ jobs:
6767
permissions:
6868
packages: write
6969
steps:
70-
- uses: actions/checkout@v4
70+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
7171
with:
7272
persist-credentials: false
7373

7474
- name: Install Python
75-
uses: actions/setup-python@v5
75+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
7676
with:
7777
python-version: "3.11"
7878

7979
- name: Set up Docker Buildx
80-
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3
80+
uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3.11.1
8181

8282
- name: Login to GitHub Container Registry
83-
uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3
83+
uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3.4.0
8484
with:
8585
registry: ghcr.io
8686
username: ${{ github.actor }}
@@ -124,7 +124,7 @@ jobs:
124124
MATRIX_ARCH: ${{ matrix.arch }}
125125

126126
- name: Upload Docker Image
127-
uses: actions/upload-artifact@v4
127+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
128128
with:
129129
name: image-${{ matrix.name }}-linux_${{ matrix.arch }}
130130
path: build/image-*
@@ -139,13 +139,13 @@ jobs:
139139
crate-build-matrix: ${{ steps.set-matrix.outputs.crate-build-matrix }}
140140
any_builds: ${{ steps.set-matrix.outputs.any_builds }}
141141
steps:
142-
- uses: actions/checkout@v4
142+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
143143
with:
144144
fetch-depth: 0
145145
persist-credentials: false
146146

147147
- name: Set up Python
148-
uses: astral-sh/setup-uv@v4
148+
uses: astral-sh/setup-uv@38f3f104447c67c051c4a08e39b64a148898af3a # v4.2.0
149149

150150
- name: Get pull request labels
151151
id: get-labels
@@ -211,31 +211,31 @@ jobs:
211211
fail-fast: false
212212
name: ${{ matrix.target_triple }} / ${{ matrix.python }} / ${{ matrix.build_options }}
213213
steps:
214-
- uses: actions/checkout@v4
214+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
215215
with:
216216
fetch-depth: 0
217217
persist-credentials: false
218218

219219
- name: Install Python
220-
uses: actions/setup-python@v5
220+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
221221
with:
222222
python-version: "3.11"
223223

224224
- name: Download pythonbuild
225-
uses: actions/download-artifact@v4
225+
uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
226226
with:
227227
name: ${{ matrix.crate_artifact_name }}
228228
path: build
229229

230230
- name: Download images
231-
uses: actions/download-artifact@v4
231+
uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
232232
with:
233233
pattern: image-*
234234
path: build
235235
merge-multiple: true
236236

237237
- name: Cache downloads
238-
uses: actions/cache@v4
238+
uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
239239
with:
240240
path: build/downloads
241241
key: ${{ matrix.target_triple }}-${{ hashFiles('pythonbuild/downloads.py')}}
@@ -271,14 +271,14 @@ jobs:
271271
MATRIX_BUILD_OPTIONS: ${{ matrix.build_options }}
272272

273273
- name: Generate attestations
274-
uses: actions/attest-build-provenance@v2
274+
uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
275275
if: ${{ github.ref == 'refs/heads/main' }}
276276
with:
277277
subject-path: dist/*
278278

279279
- name: Upload Distribution
280280
if: ${{ ! matrix.dry-run }}
281-
uses: actions/upload-artifact@v4
281+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
282282
with:
283283
name: cpython-${{ matrix.python }}-${{ matrix.target_triple }}-${{ matrix.build_options }}
284284
path: dist/*
@@ -319,31 +319,31 @@ jobs:
319319
fail-fast: false
320320
name: ${{ matrix.target_triple }} / ${{ matrix.python }} / ${{ matrix.build_options }}
321321
steps:
322-
- uses: actions/checkout@v4
322+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
323323
with:
324324
fetch-depth: 0
325325
persist-credentials: false
326326

327327
- name: Install Python
328-
uses: actions/setup-python@v5
328+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
329329
with:
330330
python-version: "3.11"
331331

332332
- name: Download pythonbuild
333-
uses: actions/download-artifact@v4
333+
uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
334334
with:
335335
name: ${{ matrix.crate_artifact_name }}
336336
path: build
337337

338338
- name: Download images
339-
uses: actions/download-artifact@v4
339+
uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
340340
with:
341341
pattern: image-*
342342
path: build
343343
merge-multiple: true
344344

345345
- name: Cache downloads
346-
uses: actions/cache@v4
346+
uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
347347
with:
348348
path: build/downloads
349349
key: ${{ matrix.target_triple }}-${{ hashFiles('pythonbuild/downloads.py')}}
@@ -379,14 +379,14 @@ jobs:
379379
MATRIX_BUILD_OPTIONS: ${{ matrix.build_options }}
380380

381381
- name: Generate attestations
382-
uses: actions/attest-build-provenance@v2
382+
uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
383383
if: ${{ github.ref == 'refs/heads/main' }}
384384
with:
385385
subject-path: dist/*
386386

387387
- name: Upload Distribution
388388
if: ${{ ! matrix.dry-run }}
389-
uses: actions/upload-artifact@v4
389+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
390390
with:
391391
name: cpython-${{ matrix.python }}-${{ matrix.target_triple }}-${{ matrix.build_options }}
392392
path: dist/*

.github/workflows/macos.yml

Lines changed: 11 additions & 11 deletions
Original file line numberDiff line numberDiff line change
@@ -24,15 +24,15 @@ jobs:
2424
fail-fast: false
2525
name: crate / ${{ matrix.arch }}
2626
steps:
27-
- uses: actions/checkout@v4
27+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
2828
with:
2929
persist-credentials: false
3030

3131
- name: Emit rustc version
3232
run: |
3333
rustc --version > .rustc-version
3434
35-
- uses: actions/cache@v4
35+
- uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
3636
with:
3737
path: |
3838
~/.cargo/registry
@@ -45,7 +45,7 @@ jobs:
4545
cargo build --release
4646
4747
- name: Upload pythonbuild Executable
48-
uses: actions/upload-artifact@v4
48+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
4949
with:
5050
name: ${{ matrix.crate_artifact_name }}
5151
path: target/release/pythonbuild
@@ -58,13 +58,13 @@ jobs:
5858
crate-build-matrix: ${{ steps.set-matrix.outputs.crate-build-matrix }}
5959
any_builds: ${{ steps.set-matrix.outputs.any_builds }}
6060
steps:
61-
- uses: actions/checkout@v4
61+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
6262
with:
6363
fetch-depth: 0
6464
persist-credentials: false
6565

6666
- name: Set up Python
67-
uses: astral-sh/setup-uv@v4
67+
uses: astral-sh/setup-uv@38f3f104447c67c051c4a08e39b64a148898af3a # v4.2.0
6868

6969
- name: Get pull request labels
7070
id: get-labels
@@ -123,18 +123,18 @@ jobs:
123123
fail-fast: false
124124
name: ${{ matrix.target_triple }} / ${{ matrix.python }} / ${{ matrix.build_options }}
125125
steps:
126-
- uses: actions/checkout@v4
126+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
127127
with:
128128
fetch-depth: 0
129129
persist-credentials: false
130130

131131
- name: Install Python
132-
uses: actions/setup-python@v5
132+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
133133
with:
134134
python-version: "3.11"
135135

136136
- name: Download pythonbuild
137-
uses: actions/download-artifact@v4
137+
uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
138138
with:
139139
name: ${{ matrix.crate_artifact_name }}
140140
path: build
@@ -158,21 +158,21 @@ jobs:
158158
MATRIX_BUILD_OPTIONS: ${{ matrix.build_options }}
159159

160160
- name: Generate attestations
161-
uses: actions/attest-build-provenance@v2
161+
uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
162162
if: ${{ github.ref == 'refs/heads/main' }}
163163
with:
164164
subject-path: dist/*
165165

166166
- name: Upload Distributions
167167
if: ${{ ! matrix.dry-run }}
168-
uses: actions/upload-artifact@v4
168+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
169169
with:
170170
name: cpython-${{ matrix.python }}-${{ matrix.target_triple }}-${{ matrix.build_options }}
171171
path: dist/*
172172

173173
- name: Checkout macOS SDKs for validation
174174
if: ${{ ! matrix.dry-run }}
175-
uses: actions/checkout@v4
175+
uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
176176
with:
177177
repository: phracker/MacOSX-SDKs
178178
ref: master

.github/workflows/release.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -35,7 +35,7 @@ jobs:
3535
attestations: write
3636

3737
steps:
38-
- uses: actions/checkout@v4
38+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
3939
with:
4040
submodules: recursive
4141
persist-credentials: true # needed for git operations below
@@ -88,7 +88,7 @@ jobs:
8888
GITHUB_EVENT_INPUTS_SHA: ${{ github.event.inputs.sha }}
8989
GITHUB_EVENT_INPUTS_TAG: ${{ github.event.inputs.tag }}
9090
- name: Generate attestations
91-
uses: actions/attest-build-provenance@v2
91+
uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
9292
if: ${{ github.event.inputs.dry-run == 'false' }}
9393
with:
9494
subject-path: |

.github/workflows/windows.yml

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -24,15 +24,15 @@ jobs:
2424
fail-fast: false
2525
name: crate / ${{ matrix.arch }}
2626
steps:
27-
- uses: actions/checkout@v4
27+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
2828
with:
2929
persist-credentials: false
3030

3131
- name: Emit rustc version
3232
run: |
3333
rustc --version > .rustc-version
3434
35-
- uses: actions/cache@v4
35+
- uses: actions/cache@0400d5f644dc74513175e3cd8d07132dd4860809 # v4.2.4
3636
with:
3737
path: |
3838
C:/Rust/.cargo/registry
@@ -45,7 +45,7 @@ jobs:
4545
cargo build --release
4646
4747
- name: Upload executable
48-
uses: actions/upload-artifact@v4
48+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
4949
with:
5050
name: ${{ matrix.crate_artifact_name }}
5151
path: target/release/pythonbuild.exe
@@ -58,13 +58,13 @@ jobs:
5858
crate-build-matrix: ${{ steps.set-matrix.outputs.crate-build-matrix }}
5959
any_builds: ${{ steps.set-matrix.outputs.any_builds }}
6060
steps:
61-
- uses: actions/checkout@v4
61+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
6262
with:
6363
fetch-depth: 0
6464
persist-credentials: false
6565

6666
- name: Set up Python
67-
uses: astral-sh/setup-uv@v4
67+
uses: astral-sh/setup-uv@38f3f104447c67c051c4a08e39b64a148898af3a # v4.2.0
6868

6969
- name: Get pull request labels
7070
id: get-labels
@@ -124,7 +124,7 @@ jobs:
124124
fail-fast: false
125125
name: ${{ matrix.target_triple }} / ${{ matrix.python }} / ${{ matrix.build_options }}
126126
steps:
127-
- uses: actions/checkout@v4
127+
- uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0
128128
with:
129129
fetch-depth: 0
130130
persist-credentials: false
@@ -135,12 +135,12 @@ jobs:
135135
packages: autoconf automake libtool
136136

137137
- name: Install Python
138-
uses: actions/setup-python@v5
138+
uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
139139
with:
140140
python-version: "3.12"
141141

142142
- name: Download pythonbuild Executable
143-
uses: actions/download-artifact@v4
143+
uses: actions/download-artifact@d3f86a106a0bac45b974a628896c90dbdf5c8093 # v4.3.0
144144
with:
145145
name: ${{ matrix.crate_artifact_name }}
146146

@@ -162,13 +162,13 @@ jobs:
162162
MATRIX_BUILD_OPTIONS: ${{ matrix.build_options }}
163163

164164
- name: Generate attestations
165-
uses: actions/attest-build-provenance@v2
165+
uses: actions/attest-build-provenance@e8998f949152b193b063cb0ec769d69d929409be # v2.4.0
166166
if: ${{ github.ref == 'refs/heads/main' }}
167167
with:
168168
subject-path: dist/*
169169

170170
- name: Upload Distributions
171-
uses: actions/upload-artifact@v4
171+
uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2
172172
with:
173173
name: cpython-${{ matrix.python }}-${{ matrix.vcvars }}-${{ matrix.build_options }}
174174
path: dist/*

0 commit comments

Comments
 (0)