-
-
Notifications
You must be signed in to change notification settings - Fork 2
Commit
Signed-off-by: rjdbcm <[email protected]>
- Loading branch information
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -37,7 +37,7 @@ jobs: | |
| rekor.sigstore.dev:443 | ||
| tuf-repo-cdn.sigstore.dev:443 | ||
| - uses: OZI-Project/checkpoint@cd1117d2d6d352e52d9dfdb603b8ebd7ef964908 | ||
| - uses: OZI-Project/checkpoint@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| python-version: "3.10" | ||
|
|
||
|
|
@@ -66,7 +66,7 @@ jobs: | |
| rekor.sigstore.dev:443 | ||
| tuf-repo-cdn.sigstore.dev:443 | ||
| - uses: OZI-Project/checkpoint@cd1117d2d6d352e52d9dfdb603b8ebd7ef964908 | ||
| - uses: OZI-Project/checkpoint@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| python-version: "3.11" | ||
|
|
||
|
|
@@ -95,6 +95,6 @@ jobs: | |
| rekor.sigstore.dev:443 | ||
| tuf-repo-cdn.sigstore.dev:443 | ||
| - uses: OZI-Project/checkpoint@cd1117d2d6d352e52d9dfdb603b8ebd7ef964908 | ||
| - uses: OZI-Project/checkpoint@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| python-version: "3.12" | ||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -39,7 +39,7 @@ jobs: | |
| rekor.sigstore.dev:443 | ||
| tuf-repo-cdn.sigstore.dev:443 | ||
| - uses: OZI-Project/checkpoint@cd1117d2d6d352e52d9dfdb603b8ebd7ef964908 | ||
| - uses: OZI-Project/checkpoint@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| python-version: "3.10" | ||
| parallel: false | ||
|
|
@@ -69,7 +69,7 @@ jobs: | |
| rekor.sigstore.dev:443 | ||
| tuf-repo-cdn.sigstore.dev:443 | ||
| - uses: OZI-Project/checkpoint@cd1117d2d6d352e52d9dfdb603b8ebd7ef964908 | ||
| - uses: OZI-Project/checkpoint@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| python-version: "3.11" | ||
| parallel: false | ||
|
|
@@ -99,7 +99,7 @@ jobs: | |
| rekor.sigstore.dev:443 | ||
| tuf-repo-cdn.sigstore.dev:443 | ||
| - uses: OZI-Project/checkpoint@cd1117d2d6d352e52d9dfdb603b8ebd7ef964908 | ||
| - uses: OZI-Project/checkpoint@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| python-version: "3.12" | ||
| parallel: false | ||
|
|
@@ -136,7 +136,7 @@ jobs: | |
| api.github.com:443 | ||
| github.com:443 | ||
| - uses: OZI-Project/draft@7e8ad70f472504510e169567e97db01bdafe2533 | ||
| - uses: OZI-Project/draft@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 6: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| id: draft | ||
| with: | ||
| github-token: ${{ secrets.GITHUB_TOKEN }} | ||
|
|
@@ -180,7 +180,7 @@ jobs: | |
| cdn03.quay.io:443 | ||
| downloads.python.org:443 | ||
| - uses: OZI-Project/release@4277e29de16b07dac4a89c8f7970c2da65554d17 | ||
| - uses: OZI-Project/release@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 7: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| id: release | ||
| with: | ||
| tag: ${{ needs.draft.outputs.tag }} | ||
|
|
@@ -221,6 +221,6 @@ jobs: | |
| upload.pypi.org:443 | ||
| uploads.github.com:443 | ||
| - uses: OZI-Project/publish@55904e4f59084e7c6ccfad7b158db52a360e1f54 | ||
| - uses: OZI-Project/publish@1.0.0 | ||
|
Check warning Code scanning / Scorecard Pinned-Dependencies Medium
score is 6: third-party GitHubAction not pinned by hash
Remediation tip: update your workflow using https://app.stepsecurity.io Click Remediation section below for further remediation help |
||
| with: | ||
| github-token: ${{ secrets.GITHUB_TOKEN }} | ||