Skip to content

Commit bb27725

Browse files
QuLogicQuLogic
committed
Update all workflows, and enable dependabot
1 parent 471195e commit bb27725

File tree

4 files changed

+39
-16
lines changed

4 files changed

+39
-16
lines changed

.github/dependabot.yml

Lines changed: 11 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,11 @@
1+
---
2+
version: 2
3+
updates:
4+
- package-ecosystem: "github-actions"
5+
directory: "/"
6+
schedule:
7+
interval: "weekly"
8+
groups:
9+
actions:
10+
patterns:
11+
- "*"

.github/workflows/codeql-analysis.yml

Lines changed: 5 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -27,16 +27,14 @@ jobs:
2727

2828
steps:
2929
- name: Checkout repository
30-
uses: actions/checkout@v3
30+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
31+
with:
32+
persist-credentials: false
3133

3234
- name: Initialize CodeQL
33-
uses: github/codeql-action/init@v1
35+
uses: github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
3436
with:
3537
languages: ${{ matrix.language }}
3638

37-
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
38-
- name: Autobuild
39-
uses: github/codeql-action/autobuild@v1
40-
4139
- name: Perform CodeQL Analysis
42-
uses: github/codeql-action/analyze@v1
40+
uses: github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1

.github/workflows/lint.yml

Lines changed: 17 additions & 7 deletions
Original file line numberDiff line numberDiff line change
@@ -3,21 +3,28 @@
33
name: Linting
44
on: [pull_request]
55

6+
permissions:
7+
contents: read
8+
69
jobs:
710
flake8:
811
name: flake8
912
runs-on: ubuntu-latest
13+
permissions:
14+
checks: write
1015
steps:
11-
- uses: actions/checkout@v3
16+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
17+
with:
18+
persist-credentials: false
1219

1320
- name: Set up Python 3
14-
uses: actions/setup-python@v3
21+
uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
1522

1623
- name: Install flake8
1724
run: pip3 install flake8
1825

1926
- name: Set up reviewdog
20-
uses: reviewdog/action-setup@v1
27+
uses: reviewdog/action-setup@3f401fe1d58fe77e10d665ab713057375e39b887 # v1.3.9
2128

2229
- name: Run flake8
2330
env:
@@ -31,12 +38,15 @@ jobs:
3138
ansible:
3239
name: Ansible Lint
3340
runs-on: ubuntu-latest
34-
41+
permissions:
42+
checks: write
3543
steps:
36-
- uses: actions/checkout@v3
44+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
45+
with:
46+
persist-credentials: false
3747

3848
- name: Set up Python 3
39-
uses: actions/setup-python@v3
49+
uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
4050

4151
- name: ansible-lint
42-
uses: reviewdog/action-ansiblelint@v1
52+
uses: reviewdog/action-ansiblelint@281c57acb22e30c7db4fc84bbe30d86dc5b24234 # v1.16.0

.github/workflows/tests.yml

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -5,15 +5,19 @@ on: [push, pull_request]
55

66
jobs:
77
webhook:
8+
permissions:
9+
contents: read
810
runs-on: ubuntu-latest
911
strategy:
1012
matrix:
1113
python-version: ["3.11", "3.12"]
1214
steps:
13-
- uses: actions/checkout@v3
15+
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
16+
with:
17+
persist-credentials: false
1418

1519
- name: Install Python ${{ matrix.python-version }}
16-
uses: actions/setup-python@v3
20+
uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b # v5.3.0
1721
with:
1822
python-version: ${{ matrix.python-version }}
1923

0 commit comments

Comments
 (0)
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy