Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

ci: enforce Pinned-Dependencies check in CI for PRs #1994

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

Aditya-PS-05
Copy link
Contributor

closes #1579

@codecov-commenter
Copy link

codecov-commenter commented Oct 31, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 89.46%. Comparing base (a80c2d4) to head (510c8fb).
Report is 1 commits behind head on main.

Additional details and impacted files
@@           Coverage Diff           @@
##             main    #1994   +/-   ##
=======================================
  Coverage   89.46%   89.46%           
=======================================
  Files          16       16           
  Lines        5838     5838           
=======================================
  Hits         5223     5223           
  Misses        615      615           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

Copy link
Member

@joshlf joshlf left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

See this CI failure; you'll also need to add a dependency on this job to all-jobs-succeeded.

@@ -16,11 +16,14 @@ on:
# https://github.com/ossf/scorecard/blob/main/docs/checks.md#branch-protection
branch_protection_rule:
# To guarantee Maintained check is occasionally updated. See
# https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintained
# https://github.com/ossf/scorecard/blob/main/docs/checks.md#maintaineds
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Typo? Looks like the old link is the correct one

@@ -32,7 +35,7 @@ jobs:
permissions:
# Needed to upload the results to code-scanning dashboard.
security-events: write
# Needed to publish results and get a badge (see publish_results below).
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why this change?

@joshlf
Copy link
Member

joshlf commented Oct 31, 2024

Thanks for doing this! Just a few small changes, but otherwise this looks good!

@Aditya-PS-05 Aditya-PS-05 force-pushed the add/pinned-dependencies-check-ci branch from 743da92 to 510c8fb Compare November 1, 2024 05:53
@Aditya-PS-05 Aditya-PS-05 requested a review from joshlf November 2, 2024 11:27
@Aditya-PS-05
Copy link
Contributor Author

@jswrenn , I request you to review this pr.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

Configure OpenSSF Scorecard's Pinned-Dependencies check to block CI
3 participants