Skip to content

chore(deps): update gcr.io/distroless/static:latest docker digest to f4a57e8 #32

chore(deps): update gcr.io/distroless/static:latest docker digest to f4a57e8

chore(deps): update gcr.io/distroless/static:latest docker digest to f4a57e8 #32

Workflow file for this run

name: pr-actions
permissions: {}
on:
pull_request:
branches:
- 'master'
jobs:
ensure-sha-pinned:
runs-on: ubuntu-latest
steps:
- name: Harden Runner
uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
with:
egress-policy: audit
- name: Checkout
uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7
- name: Ensure SHA pinned actions
uses: zgosalvez/github-actions-ensure-sha-pinned-actions@0901cf7b71c7ea6261ec69a3dc2bd3f9264f893e # v3.0.12
with:
# slsa-github-generator requires using a semver tag for reusable workflows.
# See: https://github.com/slsa-framework/slsa-github-generator#referencing-slsa-builders-and-generators
allowlist: |
slsa-framework/slsa-github-generator