Skip to content

Github actions hardening - reference by-hash instead of by-tag #875

Closed
Task
Closed
Github actions hardening - reference by-hash instead of by-tag#875
Task
Labels
area/ciIssues or PRs related to CIarea/securityIssues or PRs related to securitykind/enhancementNew feature or request
Milestone
v2.15.0
@salasberryfin

Description

@salasberryfin
salasberryfin
opened on Apr 8, 2026

Description

This is a copy of the Turtles issue (already solved).

References to third-party actions should use hash instead of tags which guarantees that CI uses immutable revisions.

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/ciIssues or PRs related to CIarea/securityIssues or PRs related to securitykind/enhancementNew feature or request

    Type

    Task

    Fields

    No fields configured for Task.

    Projects

    CAPI / Turtles

    Status

    Done

    Milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions