Skip to content

Commit 5a2f62c

Browse files
GarboMuffinGarboMuffin
committed
Update workflows based on zizmor audit
1 parent 6cc9de2 commit 5a2f62c

File tree

4 files changed

+14
-12
lines changed

4 files changed

+14
-12
lines changed

.github/workflows/build-auto.yml

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -9,11 +9,12 @@ jobs:
99
runs-on: ubuntu-latest
1010

1111
steps:
12-
- uses: actions/checkout@v4
12+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
1313
with:
1414
submodules: recursive
15+
persist-credentials: false
1516
- name: Install Node.js
16-
uses: actions/setup-node@v4
17+
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af
1718
with:
1819
node-version: 20
1920
cache: npm

.github/workflows/build.yml

Lines changed: 3 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -12,11 +12,12 @@ jobs:
1212
os: [macos-latest, ubuntu-latest, windows-latest]
1313

1414
steps:
15-
- uses: actions/checkout@v4
15+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
1616
with:
1717
submodules: recursive
18+
persist-credentials: false
1819
- name: Install Node.js
19-
uses: actions/setup-node@v4
20+
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af
2021
with:
2122
node-version: 20.x
2223
cache: npm

.github/workflows/release.yml

Lines changed: 7 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -5,26 +5,26 @@ on:
55
tags:
66
- 'v*'
77

8-
permissions:
9-
contents: write
10-
118
jobs:
129
release:
1310
runs-on: ${{ matrix.os }}
1411

12+
permissions:
13+
contents: write
14+
1515
strategy:
1616
matrix:
1717
os: [macos-latest, ubuntu-latest, windows-latest]
1818

1919
steps:
20-
- uses: actions/checkout@v4
20+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
2121
with:
2222
submodules: recursive
23+
persist-credentials: false
2324
- name: Install Node.js
24-
uses: actions/setup-node@v4
25+
uses: actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af
2526
with:
2627
node-version: 20.x
27-
cache: npm
2828
- name: Install dependencies
2929
run: npm ci
3030
- name: Fetch
@@ -43,7 +43,7 @@ jobs:
4343
GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
4444
- name: Upload Microsoft Store Artifact
4545
if: runner.os == 'Windows'
46-
uses: actions/upload-artifact@v4
46+
uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b
4747
with:
4848
name: appx
4949
path: dist/*.appx

.github/workflows/winget.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -8,7 +8,7 @@ jobs:
88
publish:
99
runs-on: ubuntu-latest
1010
steps:
11-
- uses: vedantmgoyal9/winget-releaser@main
11+
- uses: vedantmgoyal9/winget-releaser@4ffc7888bffd451b357355dc214d43bb9f23917e
1212
with:
1313
identifier: GarboMuffin.TurboWarp
1414
installers-regex: 'TurboWarp-Setup-[\d.]+-\w+\.exe$'

0 commit comments

Comments
 (0)