actions/pre-commit-action
5
0
Fork 0
mirror of https://github.com/pre-commit/action.git synced 2025-11-10 20:16:57 +00:00
Code Activity Actions
204 commits 2 branches 10 tags 4.4 MiB
Commit graph

5 commits

Author SHA1 Message Date
Tom Cammann
f151909a1b
Pin actions/cache to SHA 
Pin the action/cache action in action.yml to a specific SHA, this change will allow usage of the pre-commit action when enforcement of SHA pinning on actions is set[1]. SHA pinning helps prevent supply chain attacks as versions/releases of actions are not immutable and can be updated at any time. Pinning to a SHA makes the release immutable from the consumer perspective.

SHA pinning enforcement applies to downstream dependencies, i.e. if I include pre-commit/action in my workflows I cannot use SHA pinning because actions/cache is currently unpinned.

[1] https://github.blog/changelog/2025-08-15-github-actions-policy-now-supports-blocking-and-sha-pinning-actions/#enforce-sha-pinning
 2025-08-18 10:42:24 +01:00
Jakub Boukal
0dbc303468 Upgrade action/cache to v4. Fixes: #189 2024-02-06 22:46:44 +00:00
Anthony Sottile
f5c2d257b4 remove pushing behaviour 2022-06-05 15:17:59 -04:00
Deepyaman Datta
30b00a6cd9 Support extra_args keyword in pre-commit GitHub action 2020-05-15 08:14:38 -07:00
Anthony Sottile
614487b962 Initial commit 2019-11-24 19:27:32 -08:00