From 68453073841df757b300c5e727a6f36df9c23cb4 Mon Sep 17 00:00:00 2001 From: Harmen Stoppels Date: Mon, 1 Nov 2021 18:44:03 +0100 Subject: Pin actions to a commit sha instead of tag (#26538) --- .github/workflows/bootstrap.yml | 16 +++++++------- .github/workflows/build-containers.yml | 12 +++++------ .github/workflows/macos_python.yml | 12 +++++------ .github/workflows/unit_tests.yaml | 38 +++++++++++++++++----------------- 4 files changed, 39 insertions(+), 39 deletions(-) (limited to '.github') diff --git a/.github/workflows/bootstrap.yml b/.github/workflows/bootstrap.yml index 87d6ce2e6e..52a98ac96f 100644 --- a/.github/workflows/bootstrap.yml +++ b/.github/workflows/bootstrap.yml @@ -29,7 +29,7 @@ jobs: bzip2 curl file gcc-c++ gcc gcc-gfortran git gnupg2 gzip \ make patch unzip which xz python3 python3-devel tree \ cmake bison bison-devel libstdc++-static - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 - name: Setup repo and non-root user run: | git --version @@ -59,7 +59,7 @@ jobs: bzip2 curl file g++ gcc gfortran git gnupg2 gzip \ make patch unzip xz-utils python3 python3-dev tree \ cmake bison - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 - name: Setup repo and non-root user run: | git --version @@ -87,7 +87,7 @@ jobs: bzip2 curl file gcc-c++ gcc gcc-fortran tar git gpg2 gzip \ make patch unzip which xz python3 python3-devel tree \ cmake bison - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 - name: Setup repo and non-root user run: | git --version @@ -107,7 +107,7 @@ jobs: - name: Install dependencies run: | brew install cmake bison@2.7 tree - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 - name: Bootstrap clingo run: | source share/spack/setup-env.sh @@ -126,8 +126,8 @@ jobs: - name: Install dependencies run: | brew install tree - - uses: actions/checkout@v2 - - uses: actions/setup-python@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: ${{ matrix.python-version }} - name: Bootstrap clingo @@ -144,8 +144,8 @@ jobs: matrix: python-version: ['2.7', '3.5', '3.6', '3.7', '3.8', '3.9'] steps: - - uses: actions/checkout@v2 - - uses: actions/setup-python@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: ${{ matrix.python-version }} - name: Setup repo and non-root user diff --git a/.github/workflows/build-containers.yml b/.github/workflows/build-containers.yml index a2f6230e71..6e07f66a54 100644 --- a/.github/workflows/build-containers.yml +++ b/.github/workflows/build-containers.yml @@ -35,7 +35,7 @@ jobs: name: Build ${{ matrix.dockerfile[0] }} steps: - name: Checkout - uses: actions/checkout@v2 + uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 - name: Set Container Tag Normal (Nightly) run: | @@ -59,26 +59,26 @@ jobs: fi - name: Set up QEMU - uses: docker/setup-qemu-action@v1 + uses: docker/setup-qemu-action27d0a4f181a40b142cce983c5393082c365d1480 # @v1 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v1 + uses: docker/setup-buildx-action@94ab11c41e45d028884a99163086648e898eed25 # @v1 - name: Log in to GitHub Container Registry - uses: docker/login-action@v1 + uses: docker/login-action@f054a8b539a109f9f41c372932f1ae047eff08c9 # @v1 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Log in to DockerHub - uses: docker/login-action@v1 + uses: docker/login-action@f054a8b539a109f9f41c372932f1ae047eff08c9 # @v1 with: username: ${{ secrets.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} - name: Build & Deploy ${{ matrix.dockerfile[1] }} - uses: docker/build-push-action@v2 + uses: docker/build-push-action@a66e35b9cbcf4ad0ea91ffcaf7bbad63ad9e0229 # @v2 with: file: share/spack/docker/${{matrix.dockerfile[1]}} platforms: ${{ matrix.dockerfile[2] }} diff --git a/.github/workflows/macos_python.yml b/.github/workflows/macos_python.yml index 84fcf4be3b..821ba54aa0 100644 --- a/.github/workflows/macos_python.yml +++ b/.github/workflows/macos_python.yml @@ -24,8 +24,8 @@ jobs: name: gcc with clang runs-on: macos-latest steps: - - uses: actions/checkout@v2 - - uses: actions/setup-python@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: spack install @@ -39,8 +39,8 @@ jobs: runs-on: macos-latest timeout-minutes: 700 steps: - - uses: actions/checkout@v2 - - uses: actions/setup-python@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: spack install @@ -52,8 +52,8 @@ jobs: name: scipy, mpl, pd runs-on: macos-latest steps: - - uses: actions/checkout@v2 - - uses: actions/setup-python@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: spack install diff --git a/.github/workflows/unit_tests.yaml b/.github/workflows/unit_tests.yaml index f1a71b339a..28980830d6 100644 --- a/.github/workflows/unit_tests.yaml +++ b/.github/workflows/unit_tests.yaml @@ -15,8 +15,8 @@ jobs: validate: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 - - uses: actions/setup-python@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: Install Python Packages @@ -31,10 +31,10 @@ jobs: style: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 with: fetch-depth: 0 - - uses: actions/setup-python@v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: Install Python packages @@ -57,12 +57,12 @@ jobs: packages: ${{ steps.filter.outputs.packages }} with_coverage: ${{ steps.coverage.outputs.with_coverage }} steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 if: ${{ github.event_name == 'push' }} with: fetch-depth: 0 # For pull requests it's not necessary to checkout the code - - uses: dorny/paths-filter@v2 + - uses: dorny/paths-filter@b2feaf19c27470162a626bd6fa8438ae5b263721 id: filter with: # See https://github.com/dorny/paths-filter/issues/56 for the syntax used below @@ -99,10 +99,10 @@ jobs: python-version: [2.7, 3.5, 3.6, 3.7, 3.8, 3.9] concretizer: ['original', 'clingo'] steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 with: fetch-depth: 0 - - uses: actions/setup-python@v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: ${{ matrix.python-version }} - name: Install System packages @@ -151,7 +151,7 @@ jobs: SPACK_TEST_SOLVER: ${{ matrix.concretizer }} run: | share/spack/qa/run-unit-tests - - uses: codecov/codecov-action@v2.1.0 + - uses: codecov/codecov-action@f32b3a3741e1053eb607407145bc9619351dc93b # @v2.1.0 if: ${{ needs.changes.outputs.with_coverage == 'true' }} with: flags: unittests,linux,${{ matrix.concretizer }} @@ -160,10 +160,10 @@ jobs: needs: [ validate, style, changes ] runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 with: fetch-depth: 0 - - uses: actions/setup-python@v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: Install System packages @@ -189,7 +189,7 @@ jobs: COVERAGE: true run: | share/spack/qa/run-shell-tests - - uses: codecov/codecov-action@v2.1.0 + - uses: codecov/codecov-action@f32b3a3741e1053eb607407145bc9619351dc93b # @v2.1.0 if: ${{ needs.changes.outputs.with_coverage == 'true' }} with: flags: shelltests,linux @@ -238,7 +238,7 @@ jobs: dnf install -y \ bzip2 curl file gcc-c++ gcc gcc-gfortran git gnupg2 gzip \ make patch tcl unzip which xz - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 - name: Setup repo and non-root user run: | git --version @@ -257,10 +257,10 @@ jobs: needs: [ validate, style, changes ] runs-on: ubuntu-latest steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 with: fetch-depth: 0 - - uses: actions/setup-python@v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: 3.9 - name: Install System packages @@ -294,7 +294,7 @@ jobs: SPACK_TEST_SOLVER: clingo run: | share/spack/qa/run-unit-tests - - uses: codecov/codecov-action@v2.1.0 + - uses: codecov/codecov-action@f32b3a3741e1053eb607407145bc9619351dc93b # @v2.1.0 if: ${{ needs.changes.outputs.with_coverage == 'true' }} with: flags: unittests,linux,clingo @@ -306,10 +306,10 @@ jobs: matrix: python-version: [3.8] steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # @v2 with: fetch-depth: 0 - - uses: actions/setup-python@v2 + - uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # @v2 with: python-version: ${{ matrix.python-version }} - name: Install Python packages @@ -340,7 +340,7 @@ jobs: echo "ONLY PACKAGE RECIPES CHANGED [skipping coverage]" $(which spack) unit-test -x -m "not maybeslow" -k "package_sanity" fi - - uses: codecov/codecov-action@v2.1.0 + - uses: codecov/codecov-action@f32b3a3741e1053eb607407145bc9619351dc93b # @v2.1.0 if: ${{ needs.changes.outputs.with_coverage == 'true' }} with: files: ./coverage.xml -- cgit v1.2.3-60-g2f50