[chore] enable github action pin digest helper in renovatebot (#12799)

#### Description

As part of the security slam, we've been working to pin digests in
GitHub actions. There's some tools that can run through and pin
everything, but without the notes and comments of every versioned, it
can be difficult to understand what is actually being pinned. Thus, I'm
opting to add the [renovate
helper](https://docs.renovatebot.com/modules/manager/github-actions/#digest-pinning-and-updating)
for this in GitHub actions which should automatically manage version
pinning.

#### Link to tracking issue
Related to
[#86](https://github.com/open-telemetry/sig-security/issues/87#issuecomment-2776660785)

#### Testing

Ran `npx --yes --package renovate -- renovate-config-validator
renovate.json` after updating the config.

This commit is contained in:

Adriel Perkins

2025-04-11 04:34:50 -04:00

committed by

GitHub

parent 4fb7c24ebe

commit 568c3ce6fd

No known key found for this signature in database

GPG Key ID: B5690EEEBB952194

1 changed files with 2 additions and 1 deletions

									
										3

renovate.json

										View File
									
				@ -8,7 +8,8 @@

				    "go": "1.23"

				  },

				  "extends": [

				    "config:recommended"

				    "config:recommended",

				    "helpers:pinGitHubActionDigests"

				  ],

				  "schedule": [

				    "on tuesday"

[chore] enable github action pin digest helper in renovatebot (#12799)

3 renovate.json Unescape Escape View File

3

renovate.json

View File