eclipse/wakaama
1
0
Fork 0
mirror of https://github.com/eclipse/wakaama.git synced 2025-05-08 23:31:37 +08:00
Code Issues Packages Projects Releases Wiki Activity

ci: Pin GitHub actions versions

Browse Source 
One step to improve our OpenSSF score card result.
This commit is contained in:
Reto Schneider 2024-11-15 15:07:42 +01:00
parent bd1080eb83
commit a1655b913e
11 changed files with 19 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
.github/workflows/build.yaml vendored
View File

@ -14,7 +14,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0
@ -42,7 +42,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0

2
.github/workflows/build_and_test.yaml vendored
View File

@ -17,7 +17,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0

4
.github/workflows/clang-static-analyzer.yaml vendored
View File

@ -8,7 +8,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0
@ -22,7 +22,7 @@ jobs:
run: tools/ci/run_ci.sh --run-build --scan-build scan-build-14 run: tools/ci/run_ci.sh --run-build --scan-build scan-build-14
- name: Upload scan build reports - name: Upload scan build reports
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
with: with:
name: Clang Static Analyzer Reports name: Clang Static Analyzer Reports
path: build-wakaama/clang-static-analyzer path: build-wakaama/clang-static-analyzer

6
.github/workflows/codeql-analysis.yml vendored
View File

@ -14,7 +14,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0
@ -25,7 +25,7 @@ jobs:
sudo apt-get install cmake libcunit1-dev ninja-build unzip wget sudo apt-get install cmake libcunit1-dev ninja-build unzip wget
- name: Initialize CodeQL - name: Initialize CodeQL
uses: github/codeql-action/init@v3 uses: github/codeql-action/init@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
with: with:
languages: cpp languages: cpp
@ -33,4 +33,4 @@ jobs:
run: tools/ci/run_ci.sh --run-build run: tools/ci/run_ci.sh --run-build
- name: Perform CodeQL Analysis - name: Perform CodeQL Analysis
uses: github/codeql-action/analyze@v3 uses: github/codeql-action/analyze@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4

2
.github/workflows/compliance.yaml vendored
View File

@ -9,7 +9,7 @@ jobs:
steps: steps:
- name: Checkout code including full history - name: Checkout code including full history
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
fetch-depth: 0 fetch-depth: 0

4
.github/workflows/coverage.yaml vendored
View File

@ -8,7 +8,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0
@ -26,7 +26,7 @@ jobs:
--test-coverage html --test-coverage html
- name: Upload HTML coverage report - name: Upload HTML coverage report
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
with: with:
name: Coverage Report (HTML) name: Coverage Report (HTML)
path: build-wakaama/coverage path: build-wakaama/coverage

4
.github/workflows/documentation.yaml vendored
View File

@ -10,7 +10,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Install dependencies from APT repository - name: Install dependencies from APT repository
run: | run: |
@ -21,7 +21,7 @@ jobs:
run: tools/ci/run_ci.sh --run-doxygen run: tools/ci/run_ci.sh --run-doxygen
- name: Upload Doxygen documentation - name: Upload Doxygen documentation
uses: actions/upload-artifact@v4 uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3
with: with:
name: Doxygen documentation (HTML) name: Doxygen documentation (HTML)
path: build-wakaama/doxygen path: build-wakaama/doxygen

2
.github/workflows/macos.yaml vendored
View File

@ -12,7 +12,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0

4
.github/workflows/multiarch.yaml vendored
View File

@ -11,12 +11,12 @@ jobs:
arch: ["armv6", "armv7", "aarch64", "s390x", "ppc64le"] arch: ["armv6", "armv7", "aarch64", "s390x", "ppc64le"]
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0
- name: Build and test - name: Build and test
uses: uraimo/run-on-arch-action@v2.8.1 uses: uraimo/run-on-arch-action@5397f9e30a9b62422f302092631c99ae1effcd9e # v2.8.1
id: runcmd id: runcmd
with: with:
arch: ${{ matrix.arch }} arch: ${{ matrix.arch }}

2
.github/workflows/scorecard.yml vendored
View File

@ -52,7 +52,7 @@ jobs:
# Upload the results to GitHub's code scanning dashboard (optional). # Upload the results to GitHub's code scanning dashboard (optional).
# Commenting out will disable upload of results to your repo's Code Scanning dashboard # Commenting out will disable upload of results to your repo's Code Scanning dashboard
- name: "Upload to code-scanning" - name: "Upload to code-scanning"
uses: github/codeql-action/upload-sarif@v3 uses: github/codeql-action/upload-sarif@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
with: with:
sarif_file: results.sarif sarif_file: results.sarif

4
.github/workflows/sonarcloud-scan.yaml vendored
View File

@ -8,7 +8,7 @@ jobs:
steps: steps:
- name: Checkout code including full history and submodules - name: Checkout code including full history and submodules
uses: actions/checkout@v4 uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
with: with:
submodules: true submodules: true
fetch-depth: 0 fetch-depth: 0
@ -19,7 +19,7 @@ jobs:
sudo apt-get install cmake gcovr libcunit1-dev ninja-build unzip wget sudo apt-get install cmake gcovr libcunit1-dev ninja-build unzip wget
- name: Install sonar-scanner and build-wrapper - name: Install sonar-scanner and build-wrapper
uses: sonarsource/sonarcloud-github-c-cpp@v2 uses: sonarsource/sonarcloud-github-c-cpp@e4882e1621ad2fb48dddfa48287411bed34789b1 # v2.0.2
- name: Collect test coverage data - name: Collect test coverage data
run: | run: |