Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[CI] [GHA] Set actions references to specific commit hash; provide explicit top level token permissions for jobs #24839

Merged
merged 3 commits into from
Jun 4, 2024
Merged

[CI] [GHA] Set actions references to specific commit hash; provide explicit top level token permissions for jobs #24839

merged 3 commits into from
Jun 4, 2024

Conversation

akashchi
Copy link
Contributor

@akashchi akashchi commented Jun 4, 2024

@akashchi akashchi added category: CI OpenVINO public CI github_actions Pull requests that update GitHub Actions code labels Jun 4, 2024
@akashchi akashchi added this to the 2024.3 milestone Jun 4, 2024
@akashchi akashchi requested review from ilya-lavrenov and mryzhov June 4, 2024 09:15
@akashchi akashchi requested a review from a team as a code owner June 4, 2024 09:15
akashchi
akashchi commented Jun 4, 2024
View reviewed changes
.github/workflows/android_arm64.yml
@@ -21,7 +23,7 @@ jobs:
skip_workflow: "${{ steps.smart_ci.outputs.skip_workflow }}"
steps:
- name: checkout action
uses: actions/checkout@v4
uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The dependabot can work with these dependencies: dependabot/dependabot-core#4691.

@dorloff dorloff self-requested a review June 4, 2024 12:21
@dorloff dorloff added this pull request to the merge queue Jun 4, 2024
Merged via the queue into openvinotoolkit:master with commit 52d0a44 Jun 4, 2024
89 of 91 checks passed
mory91 pushed a commit to mory91/openvino that referenced this pull request Jun 10, 2024
@akashchi @mory91
[CI] [GHA] Set actions references to specific commit hash; provide ex…
39b9f0e 
…plicit top level token permissions for jobs (openvinotoolkit#24839)

### Details:
- Token permissions docs:
https://github.com/ossf/scorecard/blob/98ec491a888a8a0db9d83a3c7d379ae1f46321de/docs/checks.md#token-permissions
- Actions by hash docs:
https://github.com/ossf/scorecard/blob/98ec491a888a8a0db9d83a3c7d379ae1f46321de/docs/checks.md#pinned-dependencies

### Tickets:
 - *142943*
 - *142944*
allnes pushed a commit to allnes/openvino that referenced this pull request Jun 27, 2024
@akashchi @allnes
[CI] [GHA] Set actions references to specific commit hash; provide ex…
aa00050 
…plicit top level token permissions for jobs (openvinotoolkit#24839)

### Details:
- Token permissions docs:
https://github.com/ossf/scorecard/blob/98ec491a888a8a0db9d83a3c7d379ae1f46321de/docs/checks.md#token-permissions
- Actions by hash docs:
https://github.com/ossf/scorecard/blob/98ec491a888a8a0db9d83a3c7d379ae1f46321de/docs/checks.md#pinned-dependencies

### Tickets:
 - *142943*
 - *142944*
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dorloff dorloff dorloff approved these changes

@ilya-lavrenov ilya-lavrenov Awaiting requested review from ilya-lavrenov

@mryzhov mryzhov Awaiting requested review from mryzhov

Assignees

@mryzhov mryzhov

Labels
category: CI OpenVINO public CI github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
2024.3
Development

Successfully merging this pull request may close these issues.
3 participants
@akashchi @dorloff @mryzhov