Fix action pins, delete test workflow
diff --git a/.github/actions/internal/docker-auth/action.yml b/.github/actions/internal/docker-auth/action.yml
index 2397c91..482ce7a 100644
--- a/.github/actions/internal/docker-auth/action.yml
+++ b/.github/actions/internal/docker-auth/action.yml
@@ -16,11 +16,11 @@
steps:
- name: Authenticate to Google Cloud
id: auth
- uses: google-github-actions/auth@v0
+ uses: google-github-actions/auth@ef5d53e30bbcd8d0836f4288f5e50ff3e086997d # v1.0.0
with:
credentials_json: ${{ inputs.credentials }}
- name: Set up Cloud SDK
- uses: google-github-actions/setup-gcloud@v1
+ uses: google-github-actions/setup-gcloud@d51b5346f85640ec2aa2fa057354d2b82c2fcbce # v1.0.1
- name: Use gcloud CLI
shell: bash
run: gcloud info
diff --git a/.github/actions/internal/docker-run/action.yml b/.github/actions/internal/docker-run/action.yml
index 8ee96ef..9e29418 100644
--- a/.github/actions/internal/docker-run/action.yml
+++ b/.github/actions/internal/docker-run/action.yml
@@ -22,10 +22,13 @@
runs:
using: 'composite'
steps:
+ - name: Setup QEMU for possible emulation
+ uses: docker/setup-qemu-action@e81a89b1732b9c48d79cd809d8d81d79c4647a18 # v2.1.0
+
- name: Check docker cache
if: ${{ inputs.docker-cache }}
id: check-docker-cache
- uses: actions/cache@v3
+ uses: actions/cache@627f0f41f6904a5b1efbaed9f96d9eb58e92e920 # v3.2.4
with:
path: ci/docker/
key: ${{ inputs.image }}
diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml
index 906f566..e20d9f6 100644
--- a/.github/workflows/codespell.yml
+++ b/.github/workflows/codespell.yml
@@ -10,7 +10,7 @@
name: Check for spelling errors
runs-on: ubuntu-latest
steps:
- - uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
- uses: codespell-project/actions-codespell@master
with:
check_filenames: true
diff --git a/.github/workflows/generate_files.yml b/.github/workflows/generate_files.yml
index bbeef6e..95df914 100644
--- a/.github/workflows/generate_files.yml
+++ b/.github/workflows/generate_files.yml
@@ -22,7 +22,7 @@
fail-fast: false # Don't cancel all jobs if one fails.
steps:
- - uses: actions/checkout@v3
+ - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
# Note: this token has an expiration date, so if the workflow starts
# failing then you may need to generate a fresh token.
diff --git a/.github/workflows/objc_cocoapods.yml b/.github/workflows/objc_cocoapods.yml
index 89fb5d1..886d5f0 100644
--- a/.github/workflows/objc_cocoapods.yml
+++ b/.github/workflows/objc_cocoapods.yml
@@ -31,7 +31,7 @@
PLATFORM: ["ios", "macos", "tvos"]
CONFIGURATION: ["Debug", "Release"]
steps:
- - uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
- name: Pod lib lint
run: |
pod lib lint --verbose \
diff --git a/.github/workflows/test_action.yml b/.github/workflows/test_action.yml
deleted file mode 100644
index 8265a21..0000000
--- a/.github/workflows/test_action.yml
+++ /dev/null
@@ -1,39 +0,0 @@
-name: Tests
-
-on:
- push:
- pull_request:
-
-jobs:
- test:
- if: ${{ false }}
- name: Test
- runs-on: ubuntu-latest
- steps:
- - name: Checkout pending changes
- uses: actions/checkout@v3
- - name: Setup QEMU for possible emulation
- uses: docker/setup-qemu-action@v1
-
- - name: Run Build
- uses: ./.github/actions/bazel-docker
- with:
- bazel: build //:protoc -c opt
- bazel-cache: cpp_bazel/Optimized
- credentials: ${{secrets.GAR_SERVICE_ACCOUNT}}
-
- bash:
- name: Bash
- runs-on: ubuntu-latest
- steps:
- - name: Checkout pending changes
- uses: actions/checkout@v3
- - name: Setup QEMU for possible emulation
- uses: docker/setup-qemu-action@v1
-
- - name: Run Bash
- uses: ./.github/actions/bazel-docker
- with:
- bash: echo 'Hello - $BAZEL_FLAGS'
- bazel-cache: cpp_bazel/Optimized
- credentials: ${{secrets.GAR_SERVICE_ACCOUNT}}
diff --git a/.github/workflows/test_cpp.yml b/.github/workflows/test_cpp.yml
index a82fc36..5e8014f 100644
--- a/.github/workflows/test_cpp.yml
+++ b/.github/workflows/test_cpp.yml
@@ -39,11 +39,9 @@
runs-on: ubuntu-latest
steps:
- name: Checkout pending changes
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
ref: ${{ inputs.safe-checkout }}
- - name: Setup QEMU for possible emulation
- uses: docker/setup-qemu-action@v1
- name: Run tests
uses: ./.github/actions/bazel-docker
with:
@@ -85,7 +83,7 @@
runs-on: ubuntu-latest
steps:
- name: Checkout pending changes
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
submodules: recursive
ref: ${{ inputs.safe-checkout }}
diff --git a/.github/workflows/test_php.yml b/.github/workflows/test_php.yml
index ffad7db..0bf0ceb 100644
--- a/.github/workflows/test_php.yml
+++ b/.github/workflows/test_php.yml
@@ -38,7 +38,7 @@
runs-on: ubuntu-latest
steps:
- name: Checkout pending changes
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
submodules: recursive
ref: ${{ inputs.safe-checkout }}
diff --git a/.github/workflows/test_php_ext.yml b/.github/workflows/test_php_ext.yml
index 5d57f1b..901512c 100644
--- a/.github/workflows/test_php_ext.yml
+++ b/.github/workflows/test_php_ext.yml
@@ -38,7 +38,7 @@
run: |
apt-get install -qy --no-install-recommends git
- name: Checkout
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
ref: ${{ inputs.safe-checkout }}
submodules: recursive
diff --git a/.github/workflows/test_ruby_install.yml b/.github/workflows/test_ruby_install.yml
index 7348827..8eb618d 100644
--- a/.github/workflows/test_ruby_install.yml
+++ b/.github/workflows/test_ruby_install.yml
@@ -27,7 +27,7 @@
runs-on: ubuntu-latest
steps:
- name: Checkout pending changes
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
ref: ${{ inputs.safe-checkout }}
- name: Run tests
diff --git a/.github/workflows/test_runner.yml b/.github/workflows/test_runner.yml
index 357acb7..41472ec 100644
--- a/.github/workflows/test_runner.yml
+++ b/.github/workflows/test_runner.yml
@@ -82,7 +82,7 @@
if: github.event.action == 'labeled'
runs-on: ubuntu-latest
steps:
- - uses: actions-ecosystem/action-remove-labels@v1
+ - uses: actions-ecosystem/action-remove-labels@2ce5d41b4b6aa8503e285553f75ed56e0a40bae0 # v1.3.0
with:
labels: safe for tests
diff --git a/.github/workflows/update_php_repo.yml b/.github/workflows/update_php_repo.yml
index 4af48dc..bd3108a 100644
--- a/.github/workflows/update_php_repo.yml
+++ b/.github/workflows/update_php_repo.yml
@@ -15,12 +15,12 @@
runs-on: ubuntu-latest
steps:
- name: Checkout protobuf-php
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
repository: protocolbuffers/protobuf-php
token: ${{ secrets.BOT_ACCESS_TOKEN }}
- name: Clone protobuf
- uses: actions/checkout@v3
+ uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.3.0
with:
path: protobuf
- name: Configure Git Bot
