This is an automated email from the ASF dual-hosted git repository.
acosentino pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/camel-quarkus.git
The following commit(s) were added to refs/heads/main by this push:
new 8d59138bb2 Github Actions Security Best practices: Pin Actions to
Full lenght Commit SHA - Camel Master Cron workflow (#6407)
8d59138bb2 is described below
commit 8d59138bb219ad71b911e2d9fa7fbce4ac7ef54d
Author: Andrea Cosentino <anco...@gmail.com>
AuthorDate: Tue Sep 3 08:07:42 2024 +0200
Github Actions Security Best practices: Pin Actions to Full lenght Commit
SHA - Camel Master Cron workflow (#6407)
---
.github/workflows/camel-master-cron.yaml | 48 ++++++++++++++++----------------
1 file changed, 24 insertions(+), 24 deletions(-)
diff --git a/.github/workflows/camel-master-cron.yaml
b/.github/workflows/camel-master-cron.yaml
index 7a57fcd44e..b08ba7aab2 100644
--- a/.github/workflows/camel-master-cron.yaml
+++ b/.github/workflows/camel-master-cron.yaml
@@ -44,7 +44,7 @@ jobs:
run: |
df -h /
- name: Set up JDK 17
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '17'
@@ -53,7 +53,7 @@ jobs:
[ ! -d ~/build-data ] && mkdir -p ~/build-data
echo "${{ github.run_id }}-${{ github.run_number }}-$(uuidgen)" >
~/build-data/build-id.txt
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -91,7 +91,7 @@ jobs:
ls -lh ${{ runner.temp }}/maven-repo.tgz
df -h /
- name: Persist Maven Repo
- uses: actions/upload-artifact@v4
+ uses: actions/upload-artifact@50769540e7f4bd5e21e526ee35c689e35e0d6874
# v4.4.0
with:
name: maven-repo
path: ${{ runner.temp }}/maven-repo.tgz
@@ -142,7 +142,7 @@ jobs:
matrix: ${{ fromJson(needs.initial-mvn-install.outputs.matrix) }}
steps:
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -154,7 +154,7 @@ jobs:
rm -f ../maven-repo.tgz
df -h /
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -167,7 +167,7 @@ jobs:
git fetch origin main
git rebase $(cat ~/build-data/main-sha.txt)
- name: Set up JDK 17
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '17'
@@ -229,7 +229,7 @@ jobs:
MAVEN_OPTS: -Xmx3000m
steps:
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -241,7 +241,7 @@ jobs:
rm -f ../maven-repo.tgz
df -h /
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -252,7 +252,7 @@ jobs:
git fetch origin main
git rebase $(cat ~/build-data/main-sha.txt)
- name: Set up JDK 17
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '17'
@@ -331,7 +331,7 @@ jobs:
MAVEN_OPTS: -Xmx3000m
steps:
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -343,7 +343,7 @@ jobs:
rm -f ../maven-repo.tgz
df -h /
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -354,7 +354,7 @@ jobs:
git fetch origin main
git rebase $(cat ~/build-data/main-sha.txt)
- name: Set up JDK ${{ matrix.java }}
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: ${{ matrix.java }}
@@ -385,7 +385,7 @@ jobs:
MAVEN_OPTS: -Xmx3000m
steps:
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -397,7 +397,7 @@ jobs:
rm -f ../maven-repo.tgz
df -h /
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -410,7 +410,7 @@ jobs:
- name: Reclaim Disk Space
run: .github/reclaim-disk-space.sh
- name: Set up JDK 21
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '21'
@@ -442,7 +442,7 @@ jobs:
MAVEN_OPTS: -Xmx3000m
steps:
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -452,7 +452,7 @@ jobs:
tar -xzf ../maven-repo.tgz -C ~
rm -f ../maven-repo.tgz
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -463,7 +463,7 @@ jobs:
git fetch origin main
git rebase $(cat ~/build-data/main-sha.txt)
- name: Set up JDK 17
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '17'
@@ -495,12 +495,12 @@ jobs:
matrix: ${{ fromJson(needs.initial-mvn-install.outputs.examples-matrix)
}}
steps:
- name: Set up JDK 17
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '17'
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -512,7 +512,7 @@ jobs:
rm -f ../maven-repo.tgz
df -h /
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
@@ -580,12 +580,12 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: Set up JDK 17
- uses: actions/setup-java@v4
+ uses: actions/setup-java@6a0805fcefea3d4657a47ac4c165951e33482018 #
v4.2.2
with:
distribution: 'temurin'
java-version: '17'
- name: Download Maven Repo
- uses: actions/download-artifact@v4
+ uses:
actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8
with:
name: maven-repo
path: ..
@@ -597,7 +597,7 @@ jobs:
rm -f ../maven-repo.tgz
df -h /
- name: Checkout
- uses: actions/checkout@v4
+ uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 #
v4.1.7
with:
ref: camel-main
fetch-depth: 0
