27661615f7
chore(deps): update github/codeql-action digest to 297ec80 ( #147 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2022-10-16 12:40:16 -07:00
118fe7dec2
chore(deps): update actions/checkout digest to 8230315 ( #122 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2022-10-12 21:31:19 -07:00
a33030c545
chore(deps): update github/codeql-action digest to 44edb7c ( #133 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2022-10-12 21:21:04 -07:00
bb36557f52
chore: Bump actions/checkout from 3.0.2 to 3.1.0 ( #139 )
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3.0.2 to 3.1.0.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](2541b1294d...93ea575cb5
2022-10-10 06:59:40 -07:00
64ec731068
chore(deps): update github/codeql-action digest to 3d39294 ( #127 )
...
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
2022-10-07 10:23:44 +00:00
73cc784491
chore: [StepSecurity] ci: Harden GitHub Actions ( #120 )
...
* [StepSecurity] ci: Harden GitHub Actions in release.yml
* [StepSecurity] ci: Harden GitHub Actions in static-code-scanning.yaml
* [StepSecurity] ci: Harden GitHub Actions in lint-pr.yml
* [StepSecurity] ci: Harden GitHub Actions in merge.yml
* [StepSecurity] ci: Harden GitHub Actions in pullrequest.yml
2022-10-06 09:29:47 -07:00
29f32939f8
chore: Write perms should be as tightly scoped as possible. ( #107 )
...
* Add a dependabot file to keep deps up to date
Signed-off-by: Justin Abrahms <justin@abrah.ms>
* Move write permissions to the specific job, rather than globally
Signed-off-by: Justin Abrahms <justin@abrah.ms>
* Run code scanning (slow auto-build) weekly
Signed-off-by: Justin Abrahms <justin@abrah.ms>
Signed-off-by: Justin Abrahms <justin@abrah.ms>
2022-10-05 15:02:59 -04:00
renovate[bot]