chore: Use approved GitHub Actions#60
Open
Benjamin-Philip wants to merge 2 commits into
Open
Conversation
The ASF has a list of approved GitHub Actions that are allowed to execute (found here: https://github.com/apache/infrastructure-actions/blob/main/approved_patterns.yml) This commit pins certain actions to the approved version so that GitHub Actions can execute.
There was a problem hiding this comment.
Pull request overview
This PR updates GitHub Actions workflow definitions to comply with the ASF approved-actions allowlist by pinning previously unpinned actions (e.g., @master / @v1) to specific commit SHAs so workflows are permitted to execute.
Changes:
- Pin
dtolnay/rust-toolchainfrom@masterto a specific commit SHA across workflows. - Pin
erlef/setup-beamfrom@v1to a specific commit SHA where used. - Adjust
rust-cacheaction reference casing in one job.
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
.github/workflows/rust-ci.yml |
Pins Rust toolchain action to a commit SHA; adjusts rust-cache reference casing in one job. |
.github/workflows/erlang-ci.yml |
Pins Erlang setup and Rust toolchain actions to commit SHAs for CI jobs. |
.github/workflows/docs.yml |
Pins Rust toolchain and Erlang setup actions to commit SHAs for docs generation workflow. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
Comment on lines
70
to
73
| components: rustfmt | ||
|
|
||
| - uses: Swatinem/rust-cache@v2 | ||
| - uses: swatinem/rust-cache@v2 | ||
| with: |
Benjamin-Philip
changed the title
Collaborator
Author
kou
reviewed
Jun 24, 2026
|
|
||
| - name: Install Erlang/OTP | ||
| uses: erlef/setup-beam@v1 | ||
| uses: erlef/setup-beam@fc68ffb90438ef2936bbb3251622353b3dcb2f93 |
Member
There was a problem hiding this comment.
Could you add # ${TAG_NAME} comment that will be updated automatically by Dependabot:
Suggested change
| uses: erlef/setup-beam@fc68ffb90438ef2936bbb3251622353b3dcb2f93 | |
| uses: erlef/setup-beam@fc68ffb90438ef2936bbb3251622353b3dcb2f93 # v1.24.0 |
| components: clippy | ||
|
|
||
| - uses: Swatinem/rust-cache@v2 | ||
| - uses: swatinem/rust-cache@v2 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Which issue does this PR close?
Closes #50.
Rationale for this change
The ASF has a list of approved GitHub Actions that are allowed to execute (found here). Unless all actions in a workflow have been approved, the workflow cannot run.
What's Changed
This commit pins certain actions to the approved version so that GitHub Actions can execute.