diff options
Diffstat (limited to '.github/workflows')
-rw-r--r-- | .github/workflows/build-extra.yml | 2 | ||||
-rw-r--r-- | .github/workflows/build.yml | 2 | ||||
-rw-r--r-- | .github/workflows/check-c.yml | 12 | ||||
-rw-r--r-- | .github/workflows/check-profiles.yml | 2 | ||||
-rw-r--r-- | .github/workflows/check-python.yml | 6 | ||||
-rw-r--r-- | .github/workflows/codespell.yml | 4 | ||||
-rw-r--r-- | .github/workflows/test.yml | 10 |
7 files changed, 20 insertions, 18 deletions
diff --git a/.github/workflows/build-extra.yml b/.github/workflows/build-extra.yml index 7fb51e92f..6c2905e43 100644 --- a/.github/workflows/build-extra.yml +++ b/.github/workflows/build-extra.yml | |||
@@ -43,7 +43,7 @@ jobs: | |||
43 | runs-on: ubuntu-22.04 | 43 | runs-on: ubuntu-22.04 |
44 | steps: | 44 | steps: |
45 | - name: Harden Runner | 45 | - name: Harden Runner |
46 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 46 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
47 | with: | 47 | with: |
48 | egress-policy: block | 48 | egress-policy: block |
49 | allowed-endpoints: > | 49 | allowed-endpoints: > |
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 5eb84a843..ae1aef039 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml | |||
@@ -59,7 +59,7 @@ jobs: | |||
59 | runs-on: ubuntu-22.04 | 59 | runs-on: ubuntu-22.04 |
60 | steps: | 60 | steps: |
61 | - name: Harden Runner | 61 | - name: Harden Runner |
62 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 62 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
63 | with: | 63 | with: |
64 | egress-policy: block | 64 | egress-policy: block |
65 | allowed-endpoints: > | 65 | allowed-endpoints: > |
diff --git a/.github/workflows/check-c.yml b/.github/workflows/check-c.yml index 2658ce1d1..496efb76c 100644 --- a/.github/workflows/check-c.yml +++ b/.github/workflows/check-c.yml | |||
@@ -45,7 +45,7 @@ jobs: | |||
45 | runs-on: ubuntu-22.04 | 45 | runs-on: ubuntu-22.04 |
46 | steps: | 46 | steps: |
47 | - name: Harden Runner | 47 | - name: Harden Runner |
48 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 48 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
49 | with: | 49 | with: |
50 | egress-policy: block | 50 | egress-policy: block |
51 | allowed-endpoints: > | 51 | allowed-endpoints: > |
@@ -76,7 +76,7 @@ jobs: | |||
76 | runs-on: ubuntu-22.04 | 76 | runs-on: ubuntu-22.04 |
77 | steps: | 77 | steps: |
78 | - name: Harden Runner | 78 | - name: Harden Runner |
79 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 79 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
80 | with: | 80 | with: |
81 | egress-policy: block | 81 | egress-policy: block |
82 | allowed-endpoints: > | 82 | allowed-endpoints: > |
@@ -103,7 +103,7 @@ jobs: | |||
103 | runs-on: ubuntu-20.04 | 103 | runs-on: ubuntu-20.04 |
104 | steps: | 104 | steps: |
105 | - name: Harden Runner | 105 | - name: Harden Runner |
106 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 106 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
107 | with: | 107 | with: |
108 | egress-policy: block | 108 | egress-policy: block |
109 | allowed-endpoints: > | 109 | allowed-endpoints: > |
@@ -132,7 +132,7 @@ jobs: | |||
132 | 132 | ||
133 | steps: | 133 | steps: |
134 | - name: Harden Runner | 134 | - name: Harden Runner |
135 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 135 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
136 | with: | 136 | with: |
137 | disable-sudo: true | 137 | disable-sudo: true |
138 | egress-policy: block | 138 | egress-policy: block |
@@ -150,7 +150,7 @@ jobs: | |||
150 | 150 | ||
151 | # Initializes the CodeQL tools for scanning. | 151 | # Initializes the CodeQL tools for scanning. |
152 | - name: Initialize CodeQL | 152 | - name: Initialize CodeQL |
153 | uses: github/codeql-action/init@49abf0ba24d0b7953cb586944e918a0b92074c80 | 153 | uses: github/codeql-action/init@66b90a5db151a8042fa97405c6cf843bbe433f7b |
154 | with: | 154 | with: |
155 | languages: cpp | 155 | languages: cpp |
156 | 156 | ||
@@ -161,4 +161,4 @@ jobs: | |||
161 | run: make -j "$(nproc)" | 161 | run: make -j "$(nproc)" |
162 | 162 | ||
163 | - name: Perform CodeQL Analysis | 163 | - name: Perform CodeQL Analysis |
164 | uses: github/codeql-action/analyze@49abf0ba24d0b7953cb586944e918a0b92074c80 | 164 | uses: github/codeql-action/analyze@66b90a5db151a8042fa97405c6cf843bbe433f7b |
diff --git a/.github/workflows/check-profiles.yml b/.github/workflows/check-profiles.yml index f1b69ec47..b5490c944 100644 --- a/.github/workflows/check-profiles.yml +++ b/.github/workflows/check-profiles.yml | |||
@@ -31,7 +31,7 @@ jobs: | |||
31 | runs-on: ubuntu-latest | 31 | runs-on: ubuntu-latest |
32 | steps: | 32 | steps: |
33 | - name: Harden Runner | 33 | - name: Harden Runner |
34 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 34 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
35 | with: | 35 | with: |
36 | disable-sudo: true | 36 | disable-sudo: true |
37 | egress-policy: block | 37 | egress-policy: block |
diff --git a/.github/workflows/check-python.yml b/.github/workflows/check-python.yml index 0581da320..535b9234b 100644 --- a/.github/workflows/check-python.yml +++ b/.github/workflows/check-python.yml | |||
@@ -30,7 +30,7 @@ jobs: | |||
30 | 30 | ||
31 | steps: | 31 | steps: |
32 | - name: Harden Runner | 32 | - name: Harden Runner |
33 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 33 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
34 | with: | 34 | with: |
35 | disable-sudo: true | 35 | disable-sudo: true |
36 | egress-policy: block | 36 | egress-policy: block |
@@ -50,9 +50,9 @@ jobs: | |||
50 | 50 | ||
51 | # Initializes the CodeQL tools for scanning. | 51 | # Initializes the CodeQL tools for scanning. |
52 | - name: Initialize CodeQL | 52 | - name: Initialize CodeQL |
53 | uses: github/codeql-action/init@49abf0ba24d0b7953cb586944e918a0b92074c80 | 53 | uses: github/codeql-action/init@66b90a5db151a8042fa97405c6cf843bbe433f7b |
54 | with: | 54 | with: |
55 | languages: python | 55 | languages: python |
56 | 56 | ||
57 | - name: Perform CodeQL Analysis | 57 | - name: Perform CodeQL Analysis |
58 | uses: github/codeql-action/analyze@49abf0ba24d0b7953cb586944e918a0b92074c80 | 58 | uses: github/codeql-action/analyze@66b90a5db151a8042fa97405c6cf843bbe433f7b |
diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml index 3da4411cc..f3c512c3e 100644 --- a/.github/workflows/codespell.yml +++ b/.github/workflows/codespell.yml | |||
@@ -23,7 +23,7 @@ jobs: | |||
23 | runs-on: ubuntu-22.04 | 23 | runs-on: ubuntu-22.04 |
24 | steps: | 24 | steps: |
25 | - name: Harden Runner | 25 | - name: Harden Runner |
26 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 26 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
27 | with: | 27 | with: |
28 | egress-policy: block | 28 | egress-policy: block |
29 | allowed-endpoints: > | 29 | allowed-endpoints: > |
@@ -38,6 +38,8 @@ jobs: | |||
38 | run: sudo apt-get update -qy | 38 | run: sudo apt-get update -qy |
39 | - name: install dependencies | 39 | - name: install dependencies |
40 | run: sudo apt-get install -qy codespell | 40 | run: sudo apt-get install -qy codespell |
41 | - name: print env | ||
42 | run: ./ci/printenv.sh | ||
41 | - name: configure | 43 | - name: configure |
42 | run: ./configure || (cat config.log; exit 1) | 44 | run: ./configure || (cat config.log; exit 1) |
43 | - run: codespell --version | 45 | - run: codespell --version |
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index a63abafcb..0a6069a5c 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml | |||
@@ -53,7 +53,7 @@ jobs: | |||
53 | SHELL: /bin/bash | 53 | SHELL: /bin/bash |
54 | steps: | 54 | steps: |
55 | - name: Harden Runner | 55 | - name: Harden Runner |
56 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 56 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
57 | with: | 57 | with: |
58 | egress-policy: block | 58 | egress-policy: block |
59 | allowed-endpoints: > | 59 | allowed-endpoints: > |
@@ -100,7 +100,7 @@ jobs: | |||
100 | SHELL: /bin/bash | 100 | SHELL: /bin/bash |
101 | steps: | 101 | steps: |
102 | - name: Harden Runner | 102 | - name: Harden Runner |
103 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 103 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
104 | with: | 104 | with: |
105 | egress-policy: block | 105 | egress-policy: block |
106 | allowed-endpoints: > | 106 | allowed-endpoints: > |
@@ -138,7 +138,7 @@ jobs: | |||
138 | SHELL: /bin/bash | 138 | SHELL: /bin/bash |
139 | steps: | 139 | steps: |
140 | - name: Harden Runner | 140 | - name: Harden Runner |
141 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 141 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
142 | with: | 142 | with: |
143 | egress-policy: block | 143 | egress-policy: block |
144 | allowed-endpoints: > | 144 | allowed-endpoints: > |
@@ -176,7 +176,7 @@ jobs: | |||
176 | SHELL: /bin/bash | 176 | SHELL: /bin/bash |
177 | steps: | 177 | steps: |
178 | - name: Harden Runner | 178 | - name: Harden Runner |
179 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 179 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
180 | with: | 180 | with: |
181 | egress-policy: block | 181 | egress-policy: block |
182 | allowed-endpoints: > | 182 | allowed-endpoints: > |
@@ -216,7 +216,7 @@ jobs: | |||
216 | SHELL: /bin/bash | 216 | SHELL: /bin/bash |
217 | steps: | 217 | steps: |
218 | - name: Harden Runner | 218 | - name: Harden Runner |
219 | uses: step-security/harden-runner@1b05615854632b887b69ae1be8cbefe72d3ae423 | 219 | uses: step-security/harden-runner@eb238b55efaa70779f274895e782ed17c84f2895 |
220 | with: | 220 | with: |
221 | egress-policy: block | 221 | egress-policy: block |
222 | allowed-endpoints: > | 222 | allowed-endpoints: > |