[all-commits] [llvm/llvm-project] 4476f7: [Github][libc++] Hash Pin Actions in Workflows (#1...
Aiden Grossman via All-commits
all-commits at lists.llvm.org
Mon Mar 10 11:54:33 PDT 2025
Branch: refs/heads/main
Home: https://github.com/llvm/llvm-project
Commit: 4476f7237ee000ce3c36e359297d4ac76b2dfb5f
https://github.com/llvm/llvm-project/commit/4476f7237ee000ce3c36e359297d4ac76b2dfb5f
Author: Aiden Grossman <aidengrossman at google.com>
Date: 2025-03-10 (Mon, 10 Mar 2025)
Changed paths:
M .github/workflows/libcxx-build-and-test.yaml
M .github/workflows/libcxx-build-containers.yml
M .github/workflows/libcxx-check-generated-files.yml
Log Message:
-----------
[Github][libc++] Hash Pin Actions in Workflows (#129488)
This patch has pins actions in the libc Github workflows. Hash pinning
is a best practice as it ensures we are getting an exact action version,
which can help with reproducibility/reliability. It additionally
alleviates security concerns as an attacker can modify release assets,
potentially giving them access to tokens in privileged workflows.
To unsubscribe from these emails, change your notification settings at https://github.com/llvm/llvm-project/settings/notifications
More information about the All-commits
mailing list