SanjayUG opened a new pull request, #15306:
URL: https://github.com/apache/datafusion/pull/15306
# Secure GitHub Actions by Using Specific SHA Hashes
## Which issue does this PR close?
- Closes #15298
## Rationale for this change
This update enhances the security of the GitHub workflows by replacing
version tags with specific SHA hashes for actions. This change mitigates risks
associated with supply chain attacks by ensuring that only verified versions of
actions are used in the workflows. This approach aligns with best practices for
securing CI/CD pipelines.
## What changes are included in this PR?
- **Commit Message:** Secure GitHub Actions by using specific SHA hashes
- Replaced version tags with specific SHA hashes for actions in the GitHub
workflows.
- Updated `korandoru/hawkeye` action in both `dev.yml` and `rust.yml`
files.
## Are these changes tested?
Yes, the changes are tested to ensure that the GitHub workflows function
correctly with the specified SHA hashes.
## Are there any user-facing changes?
No, there are no user-facing changes as this update is related to the
internal CI/CD pipeline security.
## Are there any breaking changes to public APIs?
No, there are no breaking changes to public APIs.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: github-unsubscr...@datafusion.apache.org
For queries about this service, please contact Infrastructure at:
us...@infra.apache.org
---------------------------------------------------------------------
To unsubscribe, e-mail: github-unsubscr...@datafusion.apache.org
For additional commands, e-mail: github-h...@datafusion.apache.org
