SEC-090: Automated trusted workflow pinning (2024-07-17) #859

hashicorp-tsccr · 2024-07-17T23:23:20Z

Bumping GitHub Actions version to latest TSCCR release.

changes in .github/actions/integration-test/action.yml
- bump actions/download-artifact from v4.1.7 to v4.1.8 (release notes)
- bump actions/upload-artifact from v4.3.3 to v4.3.4 (release notes)
- bump actions/upload-artifact from v4.3.3 to v4.3.4 (release notes)
changes in .github/workflows/build.yaml
- bump actions/upload-artifact from v4.3.3 to v4.3.4 (release notes)
- bump actions/upload-artifact from v4.3.3 to v4.3.4 (release notes)
- bump actions/download-artifact from v4.1.7 to v4.1.8 (release notes)

You can alter the configuration of this automation via the hcl config in security-tsccr/automation

This PR can be regenerated by dispatching the GitHub workflow Pin Action Refs. Please reach out to #team-prodsec if you have any questions.

Result of tsccr-helper -log-level=info gha update -latest .

0aace98

hashicorp-tsccr bot requested a review from a team as a code owner July 17, 2024 23:23

hashicorp-tsccr bot added the SEC-090/Pinning/Trusted Automated TSCCR pinning PR to trusted SHAs. label Jul 17, 2024

Merge branch 'main' into tsccr-auto-pinning/trusted/2024-07-17

9f9df41

tvoran approved these changes Jul 24, 2024

View reviewed changes

tvoran added this to the v0.9.0 milestone Jul 24, 2024

tvoran merged commit 69aeb4c into main Jul 24, 2024
41 checks passed

tvoran deleted the tsccr-auto-pinning/trusted/2024-07-17 branch July 24, 2024 17:53

tvoran modified the milestones: v0.9.0, 0.8.1 Jul 24, 2024

Provide feedback