Skip to content

Commit

Permalink
Merge pull request #2072 from step-security-bot/stepsecurity_remediat…
Browse files Browse the repository at this point in the history 
…ion_1727606228

[StepSecurity] ci: Harden GitHub Actions
  • Loading branch information
@afranken
afranken authored Sep 29, 2024
2 parents 96c7724 + 6af8762 commit c85d5dc
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
4 changes: 2 additions & 2 deletions .github/workflows/sbom.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,11 +19,11 @@ jobs:
- uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938 # v4.2.0
with:
fetch-depth: 0
- uses: advanced-security/[email protected]
- uses: advanced-security/sbom-generator-action@375dee8e6144d9fd0ec1f5667b4f6fb4faacefed # v0.0.1
id: sbom
env:
GITHUB_TOKEN: ${{ github.token }}
- uses: actions/[email protected]
- uses: actions/upload-artifact@3cea5372237819ed00197afe530f5a7ea3e805c8 # v3.1.0
with:
path: ${{steps.sbom.outputs.fileName }}
name: "SBOM"
2 changes: 1 addition & 1 deletion .github/workflows/upload-dependencies-of-dependenices.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,4 +29,4 @@ jobs:
- name: Build with Maven
run: ./mvnw -B -V -Dstyle.color=always clean verify
- name: Submit Dependency Snapshot
uses: advanced-security/maven-dependency-submission-action@v3
uses: advanced-security/maven-dependency-submission-action@fcd7eab6b6d22946badc98d1e62665cdee93e0ae # v3.0.3

0 comments on commit c85d5dc

Please sign in to comment.