Skip to content

Commit 9f9bf5c

Browse files
erikgberikgb
committed
Use digest for actions/checkout in all workflows
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
1 parent 8b6aa50 commit 9f9bf5c

File tree

5 files changed

+5
-5
lines changed

5 files changed

+5
-5
lines changed

.github/workflows/debian-trust-package-release-bookworm.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
id-token: write # needed for keyless signing
1616

1717
steps:
18-
- uses: actions/checkout@v5
18+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
1919
# Adding `fetch-depth: 0` makes sure tags are also fetched. We need
2020
# the tags so `git describe` returns a valid version.
2121
# see https://github.com/actions/checkout/issues/701 for extra info about this option

.github/workflows/debian-trust-package-release-bullseye.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ jobs:
1515
id-token: write # needed for keyless signing
1616

1717
steps:
18-
- uses: actions/checkout@v5
18+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
1919
# Adding `fetch-depth: 0` makes sure tags are also fetched. We need
2020
# the tags so `git describe` returns a valid version.
2121
# see https://github.com/actions/checkout/issues/701 for extra info about this option

.github/workflows/debian-trust-package-upgrade-bookworm.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ jobs:
2424
echo "This workflow should not be run on a non-branch-head."
2525
exit 1
2626
27-
- uses: actions/checkout@v5
27+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2828
# Adding `fetch-depth: 0` makes sure tags are also fetched. We need
2929
# the tags so `git describe` returns a valid version.
3030
# see https://github.com/actions/checkout/issues/701 for extra info about this option

.github/workflows/debian-trust-package-upgrade-bullseye.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -24,7 +24,7 @@ jobs:
2424
echo "This workflow should not be run on a non-branch-head."
2525
exit 1
2626
27-
- uses: actions/checkout@v5
27+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2828
# Adding `fetch-depth: 0` makes sure tags are also fetched. We need
2929
# the tags so `git describe` returns a valid version.
3030
# see https://github.com/actions/checkout/issues/701 for extra info about this option

.github/workflows/release.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ jobs:
1717
id-token: write # needed for keyless signing
1818

1919
steps:
20-
- uses: actions/checkout@v5
20+
- uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2121

2222
- id: go-version
2323
run: |

0 commit comments

Comments
 (0)