Skip to content

Commit 8035338

Browse files
pk910pk910
authored
Merge pull request #72 from ethpandaops/update-github-actions
Update GitHub Actions to use pinned hashes
2 parents 7e9f40e + 115f442 commit 8035338

File tree

4 files changed

+50
-50
lines changed

4 files changed

+50
-50
lines changed

.github/workflows/_shared-build.yaml

Lines changed: 30 additions & 30 deletions
Original file line numberDiff line numberDiff line change
@@ -46,13 +46,13 @@ jobs:
4646
name: Build linux/amd64 binary
4747
runs-on: ubuntu-latest
4848
steps:
49-
- uses: actions/checkout@v4
49+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
5050
with:
5151
ref: ${{ inputs.ref }}
5252

5353
# setup global dependencies
5454
- name: Set up go
55-
uses: actions/setup-go@v4
55+
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4
5656
with:
5757
go-version: 1.22.x
5858

@@ -71,7 +71,7 @@ jobs:
7171

7272
# upload artifacts
7373
- name: "Upload artifact: assertoor_linux_amd64"
74-
uses: actions/upload-artifact@v4
74+
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
7575
with:
7676
path: ./bin/*
7777
name: assertoor_linux_amd64
@@ -80,13 +80,13 @@ jobs:
8080
name: Build linux/arm64 binary
8181
runs-on: ubuntu-latest
8282
steps:
83-
- uses: actions/checkout@v4
83+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
8484
with:
8585
ref: ${{ inputs.ref }}
8686

8787
# setup global dependencies
8888
- name: Set up go
89-
uses: actions/setup-go@v4
89+
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4
9090
with:
9191
go-version: 1.22.x
9292

@@ -111,7 +111,7 @@ jobs:
111111

112112
# upload artifacts
113113
- name: "Upload artifact: assertoor_linux_arm64"
114-
uses: actions/upload-artifact@v4
114+
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
115115
with:
116116
path: ./bin/*
117117
name: assertoor_linux_arm64
@@ -120,13 +120,13 @@ jobs:
120120
name: Build windows/amd64 binary
121121
runs-on: windows-latest
122122
steps:
123-
- uses: actions/checkout@v4
123+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
124124
with:
125125
ref: ${{ inputs.ref }}
126126

127127
# setup global dependencies
128128
- name: Set up go
129-
uses: actions/setup-go@v4
129+
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4
130130
with:
131131
go-version: 1.22.x
132132

@@ -145,7 +145,7 @@ jobs:
145145

146146
# upload artifacts
147147
- name: "Upload artifact: assertoor_windows_amd64"
148-
uses: actions/upload-artifact@v4
148+
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
149149
with:
150150
path: ./bin/*
151151
name: assertoor_windows_amd64
@@ -154,13 +154,13 @@ jobs:
154154
name: Build macos/amd64 binary
155155
runs-on: macos-latest
156156
steps:
157-
- uses: actions/checkout@v4
157+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
158158
with:
159159
ref: ${{ inputs.ref }}
160160

161161
# setup global dependencies
162162
- name: Set up go
163-
uses: actions/setup-go@v4
163+
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4
164164
with:
165165
go-version: 1.22.x
166166

@@ -179,7 +179,7 @@ jobs:
179179

180180
# upload artifacts
181181
- name: "Upload artifact: assertoor_darwin_amd64"
182-
uses: actions/upload-artifact@v4
182+
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
183183
with:
184184
path: ./bin/*
185185
name: assertoor_darwin_amd64
@@ -188,13 +188,13 @@ jobs:
188188
name: Build macos/arm64 binary
189189
runs-on: macos-latest
190190
steps:
191-
- uses: actions/checkout@v4
191+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
192192
with:
193193
ref: ${{ inputs.ref }}
194194

195195
# setup global dependencies
196196
- name: Set up go
197-
uses: actions/setup-go@v4
197+
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4
198198
with:
199199
go-version: 1.22.x
200200

@@ -213,7 +213,7 @@ jobs:
213213

214214
# upload artifacts
215215
- name: "Upload artifact: assertoor_darwin_arm64"
216-
uses: actions/upload-artifact@v4
216+
uses: actions/upload-artifact@4cec3d8aa04e39d1a68397de0c4cd6fb9dce8ec1 # v4
217217
with:
218218
path: ./bin/*
219219
name: assertoor_darwin_arm64
@@ -224,7 +224,7 @@ jobs:
224224
if: ${{ inputs.docker }}
225225
runs-on: ubuntu-latest
226226
steps:
227-
- uses: actions/checkout@v4
227+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
228228
with:
229229
ref: ${{ inputs.ref }}
230230

@@ -234,16 +234,16 @@ jobs:
234234

235235
# prepare docker
236236
- name: Set up Docker Buildx
237-
uses: docker/setup-buildx-action@v2
237+
uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2
238238
- name: Login to Docker Hub
239-
uses: docker/login-action@v2
239+
uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc # v2
240240
with:
241241
username: ${{ secrets.DOCKERHUB_USERNAME }}
242242
password: ${{ secrets.DOCKERHUB_TOKEN }}
243243

244244
# download build artifacts
245245
- name: Download build artifacts
246-
uses: actions/download-artifact@v4
246+
uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
247247
with:
248248
name: assertoor_linux_amd64
249249
path: ./bin
@@ -272,7 +272,7 @@ jobs:
272272
if: ${{ inputs.docker }}
273273
runs-on: ubuntu-latest
274274
steps:
275-
- uses: actions/checkout@v4
275+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
276276
with:
277277
ref: ${{ inputs.ref }}
278278
- name: Get build version
@@ -281,18 +281,18 @@ jobs:
281281

282282
# prepare docker
283283
- name: Set up Docker QEMU
284-
uses: docker/setup-qemu-action@v2
284+
uses: docker/setup-qemu-action@2b82ce82d56a2a04d2637cd93a637ae1b359c0a7 # v2
285285
- name: Set up Docker Buildx
286-
uses: docker/setup-buildx-action@v2
286+
uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2
287287
- name: Login to Docker Hub
288-
uses: docker/login-action@v2
288+
uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc # v2
289289
with:
290290
username: ${{ secrets.DOCKERHUB_USERNAME }}
291291
password: ${{ secrets.DOCKERHUB_TOKEN }}
292292

293293
# download build artifacts
294294
- name: Download build artifacts
295-
uses: actions/download-artifact@v4
295+
uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
296296
with:
297297
name: assertoor_linux_arm64
298298
path: ./bin
@@ -321,7 +321,7 @@ jobs:
321321
if: ${{ inputs.docker }}
322322
runs-on: ubuntu-latest
323323
steps:
324-
- uses: actions/checkout@v4
324+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
325325
with:
326326
ref: ${{ inputs.ref }}
327327
- name: Get build version
@@ -330,9 +330,9 @@ jobs:
330330

331331
# prepare docker
332332
- name: Set up Docker Buildx
333-
uses: docker/setup-buildx-action@v2
333+
uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2
334334
- name: Login to Docker Hub
335-
uses: docker/login-action@v2
335+
uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc # v2
336336
with:
337337
username: ${{ secrets.DOCKERHUB_USERNAME }}
338338
password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -356,7 +356,7 @@ jobs:
356356
matrix:
357357
tag: ${{ fromJSON(inputs.additional_tags) }}
358358
steps:
359-
- uses: actions/checkout@v4
359+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
360360
with:
361361
ref: ${{ inputs.ref }}
362362
- name: Get build version
@@ -365,9 +365,9 @@ jobs:
365365

366366
# prepare docker
367367
- name: Set up Docker Buildx
368-
uses: docker/setup-buildx-action@v2
368+
uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2
369369
- name: Login to Docker Hub
370-
uses: docker/login-action@v2
370+
uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc # v2
371371
with:
372372
username: ${{ secrets.DOCKERHUB_USERNAME }}
373373
password: ${{ secrets.DOCKERHUB_TOKEN }}

.github/workflows/_shared-check.yaml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,11 +9,11 @@ jobs:
99
name: Run code checks
1010
runs-on: ubuntu-latest
1111
steps:
12-
- uses: actions/checkout@v4
12+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
1313

1414
# setup global dependencies
1515
- name: Set up go
16-
uses: actions/setup-go@v4
16+
uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4
1717
with:
1818
go-version: 1.22.x
1919

@@ -33,7 +33,7 @@ jobs:
3333

3434

3535
- name: Run golangci-lint
36-
uses: golangci/golangci-lint-action@v3
36+
uses: golangci/golangci-lint-action@3a919529898de77ec3da873e3063ca4b10e7f5cc # v3
3737
with:
3838
# Optional: version of golangci-lint to use in form of v1.2 or v1.2.3 or `latest` to use the latest version
3939
version: v1.59.1

.github/workflows/build-master.yml

Lines changed: 9 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -41,7 +41,7 @@ jobs:
4141
runs-on: ubuntu-latest
4242
steps:
4343
- name: Checkout base code
44-
uses: actions/checkout@v4
44+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
4545
with:
4646
path: code
4747
- name: Generate wiki from docs
@@ -83,11 +83,11 @@ jobs:
8383
steps:
8484
# download build artifacts
8585
- name: "Download build artifacts"
86-
uses: actions/download-artifact@v4
86+
uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
8787

8888
# (re)create snapshot binary release
8989
- name: Update snapshot tag & remove previous snapshot release
90-
uses: actions/github-script@v3
90+
uses: actions/github-script@ffc2c79a5b2490bd33e0a41c1de74b877714d736 # v3
9191
with:
9292
github-token: ${{secrets.GITHUB_TOKEN}}
9393
script: |
@@ -134,7 +134,7 @@ jobs:
134134
console.log(e)
135135
}
136136
- name: Create snapshot release
137-
uses: actions/create-release@v1
137+
uses: actions/create-release@0cb9c9b65d5d1901c1f53e5e66eaf4afd303e70e # v1
138138
id: create_release
139139
with:
140140
draft: false
@@ -164,7 +164,7 @@ jobs:
164164
cd assertoor_windows_amd64
165165
zip -r -q ../assertoor_snapshot_windows_amd64.zip .
166166
- name: "Upload snapshot release artifact: assertoor_snapshot_windows_amd64.zip"
167-
uses: actions/upload-release-asset@v1
167+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
168168
with:
169169
upload_url: ${{ steps.create_release.outputs.upload_url }}
170170
asset_path: ./assertoor_snapshot_windows_amd64.zip
@@ -178,7 +178,7 @@ jobs:
178178
cd assertoor_linux_amd64
179179
tar -czf ../assertoor_snapshot_linux_amd64.tar.gz .
180180
- name: "Upload snapshot release artifact: assertoor_snapshot_linux_amd64.tar.gz"
181-
uses: actions/upload-release-asset@v1
181+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
182182
with:
183183
upload_url: ${{ steps.create_release.outputs.upload_url }}
184184
asset_path: ./assertoor_snapshot_linux_amd64.tar.gz
@@ -192,7 +192,7 @@ jobs:
192192
cd assertoor_linux_arm64
193193
tar -czf ../assertoor_snapshot_linux_arm64.tar.gz .
194194
- name: "Upload snapshot release artifact: assertoor_snapshot_linux_arm64.tar.gz"
195-
uses: actions/upload-release-asset@v1
195+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
196196
with:
197197
upload_url: ${{ steps.create_release.outputs.upload_url }}
198198
asset_path: ./assertoor_snapshot_linux_arm64.tar.gz
@@ -206,7 +206,7 @@ jobs:
206206
cd assertoor_darwin_amd64
207207
tar -czf ../assertoor_snapshot_darwin_amd64.tar.gz .
208208
- name: "Upload snapshot release artifact: assertoor_snapshot_darwin_amd64.tar.gz"
209-
uses: actions/upload-release-asset@v1
209+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
210210
with:
211211
upload_url: ${{ steps.create_release.outputs.upload_url }}
212212
asset_path: ./assertoor_snapshot_darwin_amd64.tar.gz
@@ -220,7 +220,7 @@ jobs:
220220
cd assertoor_darwin_arm64
221221
tar -czf ../assertoor_snapshot_darwin_arm64.tar.gz .
222222
- name: "Upload snapshot release artifact: assertoor_snapshot_darwin_arm64.tar.gz"
223-
uses: actions/upload-release-asset@v1
223+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
224224
with:
225225
upload_url: ${{ steps.create_release.outputs.upload_url }}
226226
asset_path: ./assertoor_snapshot_darwin_arm64.tar.gz

.github/workflows/build-release.yml

Lines changed: 8 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -31,7 +31,7 @@ jobs:
3131
needs: [build_binaries]
3232
runs-on: ubuntu-latest
3333
steps:
34-
- uses: actions/checkout@v4
34+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
3535
with:
3636
fetch-depth: 100
3737
ref: ${{ github.sha }}
@@ -52,11 +52,11 @@ jobs:
5252
5353
# download build artifacts
5454
- name: "Download build artifacts"
55-
uses: actions/download-artifact@v4
55+
uses: actions/download-artifact@cc203385981b70ca67e1cc392babf9cc229d5806 # v4
5656

5757
# create draft release
5858
- name: Create latest release
59-
uses: actions/create-release@v1
59+
uses: actions/create-release@0cb9c9b65d5d1901c1f53e5e66eaf4afd303e70e # v1
6060
id: create_release
6161
with:
6262
draft: true
@@ -85,7 +85,7 @@ jobs:
8585
cd assertoor_windows_amd64
8686
zip -r -q ../assertoor_${{ inputs.version }}_windows_amd64.zip .
8787
- name: "Upload release artifact: assertoor_${{ inputs.version }}_windows_amd64.zip"
88-
uses: actions/upload-release-asset@v1
88+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
8989
with:
9090
upload_url: ${{ steps.create_release.outputs.upload_url }}
9191
asset_path: ./assertoor_${{ inputs.version }}_windows_amd64.zip
@@ -99,7 +99,7 @@ jobs:
9999
cd assertoor_linux_amd64
100100
tar -czf ../assertoor_${{ inputs.version }}_linux_amd64.tar.gz .
101101
- name: "Upload release artifact: assertoor_${{ inputs.version }}_linux_amd64.tar.gz"
102-
uses: actions/upload-release-asset@v1
102+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
103103
with:
104104
upload_url: ${{ steps.create_release.outputs.upload_url }}
105105
asset_path: ./assertoor_${{ inputs.version }}_linux_amd64.tar.gz
@@ -113,7 +113,7 @@ jobs:
113113
cd assertoor_linux_arm64
114114
tar -czf ../assertoor_${{ inputs.version }}_linux_arm64.tar.gz .
115115
- name: "Upload release artifact: assertoor_${{ inputs.version }}_linux_arm64.tar.gz"
116-
uses: actions/upload-release-asset@v1
116+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
117117
with:
118118
upload_url: ${{ steps.create_release.outputs.upload_url }}
119119
asset_path: ./assertoor_${{ inputs.version }}_linux_arm64.tar.gz
@@ -127,7 +127,7 @@ jobs:
127127
cd assertoor_darwin_amd64
128128
tar -czf ../assertoor_${{ inputs.version }}_darwin_amd64.tar.gz .
129129
- name: "Upload release artifact: assertoor_${{ inputs.version }}_darwin_amd64.tar.gz"
130-
uses: actions/upload-release-asset@v1
130+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
131131
with:
132132
upload_url: ${{ steps.create_release.outputs.upload_url }}
133133
asset_path: ./assertoor_${{ inputs.version }}_darwin_amd64.tar.gz
@@ -141,7 +141,7 @@ jobs:
141141
cd assertoor_darwin_arm64
142142
tar -czf ../assertoor_${{ inputs.version }}_darwin_arm64.tar.gz .
143143
- name: "Upload release artifact: assertoor_${{ inputs.version }}_darwin_arm64.tar.gz"
144-
uses: actions/upload-release-asset@v1
144+
uses: actions/upload-release-asset@e8f9f06c4b078e705bd2ea027f0926603fc9b4d5 # v1
145145
with:
146146
upload_url: ${{ steps.create_release.outputs.upload_url }}
147147
asset_path: ./assertoor_${{ inputs.version }}_darwin_arm64.tar.gz

0 commit comments

Comments
 (0)