diff options
| author | Victor Engmark <victor@engmark.name> | 2023-11-28 16:28:58 +1300 |
|---|---|---|
| committer | Jörg Thalheim <Mic92@users.noreply.github.com> | 2023-11-29 09:51:22 +0100 |
| commit | 4177297b141a3a8a8985dcb7dfb53550b95d3e8f (patch) | |
| tree | 4eedabde0d840433b038c9897f8c2a15c3751e58 /.github/workflows/manual-nixpkgs.yml | |
| parent | 789f7281f096e9f9b42dbfd567d25a931f3fc14a (diff) | |
ci: pin third party actions
For reproducibility.
Command:
```shell
for file in .github/workflows/*.y*ml; do
npx pin-github-action --comment=' {ref}' "$file"
done
```
Then had to manually replace all the versions with accurate specifiers
(for example, "v4" → "v4.1.1" in case of `actions/checkout`).
Diffstat (limited to '.github/workflows/manual-nixpkgs.yml')
| -rw-r--r-- | .github/workflows/manual-nixpkgs.yml | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/.github/workflows/manual-nixpkgs.yml b/.github/workflows/manual-nixpkgs.yml index f148aee076d50..23c97eafe7799 100644 --- a/.github/workflows/manual-nixpkgs.yml +++ b/.github/workflows/manual-nixpkgs.yml @@ -15,15 +15,15 @@ jobs: runs-on: ubuntu-latest if: github.repository_owner == 'NixOS' steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 with: # pull_request_target checks out the base branch by default ref: refs/pull/${{ github.event.pull_request.number }}/merge - - uses: cachix/install-nix-action@v23 + - uses: cachix/install-nix-action@6a9a9e84a173d90b3ffb42c5ddaf9ea033fad011 # v24 with: # explicitly enable sandbox extra_nix_config: sandbox = true - - uses: cachix/cachix-action@v12 + - uses: cachix/cachix-action@6a9a34cdd93d0ae4b4b59fd678660efb08109f2f # v13 with: # This cache is for the nixpkgs repo checks and should not be trusted or used elsewhere. name: nixpkgs-ci |