opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-10-10 07:45:08 +08:00
Code Issues Packages Projects Releases Wiki Activity
25,696 Commits 60 Branches 253 Tags
Commit Graph

8 Commits

Author SHA1 Message Date
renovate[bot]
d217de6424 [skip-ci] Update github/issue-labeler action to v3.4 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2024-02-02 23:24:07 +00:00
renovate[bot]
9cd975d59e [skip-ci] Update github/issue-labeler action to v3.3 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-11-09 01:32:29 +00:00
renovate[bot]
8d24e28387 [skip-ci] Update github/issue-labeler action to v3.2 
Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
 2023-07-08 19:44:36 +00:00
Chris Evich
d53871cf12 GHA: Use version instead of SHA for actions 
It's nearly impossible for humans to tell semantic-version differences
by looking at a commit sha.  Since all the actions in question come from
github, there's little security/safety benefit to using SHAs.

Signed-off-by: Chris Evich <cevich@redhat.com>
 2023-04-10 14:45:36 -04:00
renovate[bot]
f3971e4124 [skip-ci] Update github/issue-labeler action to v2.6 
Signed-off-by: Renovate Bot <bot@renovateapp.com>
 2023-04-08 11:06:49 +00:00
naveensrinivasan
9cacc18c95 Set permissions for GitHub actions 
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
 2022-03-30 20:36:23 +00:00
naveensrinivasan
1821eb3837 Pin actions to a full length commit SHA 
- Pinned actions by SHA https://github.com/ossf/scorecard/blob/main/docs/checks.md#pinned-dependencies
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

>Pin actions to a full length commit SHA

>Pinning an action to a full length commit SHA is currently the only way to use an action as an immutable release. Pinning to a particular SHA helps mitigate the risk of a bad actor adding a backdoor to the action's repository, as they would need to generate a SHA-1 collision for a valid Git object payload.

https://docs.github.com/en/actions/security-guides/security-hardening-for-github-actions#using-third-party-actions

Also dependabot supports upgrades based on SHA.

Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
 2022-03-28 19:00:16 +00:00
Paul Holzinger
525bdc3771 github: label issues based on os 
We get a lot of issues for podman-remote on macos. Since the fact that
this is a remote client is often overlooked by us lets add windows, macos
and remote label automatically based on a regex which should match the
output of podman version.

Signed-off-by: Paul Holzinger <pholzing@redhat.com>
 2022-01-27 17:51:35 +01:00