renovate

mirror of https://github.com/renovatebot/renovate.git synced 2025-01-15 09:06:25 +00:00

History

renovate[bot] 7935a7b8ed chore(deps): lock file maintenance (#18082 ) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: Rhys Arkins <rhys@arkins.net>		2022-10-10 21:47:23 -07:00
..
__fixtures__	feat(github-actions): update job and service containers (#16770 )	2022-08-05 04:57:33 +00:00
__snapshots__	chore(deps): lock file maintenance (#18082 )	2022-10-10 21:47:23 -07:00
extract.spec.ts	chore(deps): lock file maintenance (#18082 )	2022-10-10 21:47:23 -07:00
extract.ts	fix(github-actions): pkg can be null (#17094 )	2022-08-10 10:22:35 +03:00
index.ts	fix(github-actions): tighten fileMatch (#14983 )	2022-04-07 08:00:58 +02:00
readme.md	refactor: lib/modules (#14488 )	2022-03-04 09:04:02 +01:00
types.ts	feat(github-actions): update job and service containers (#16770 )	2022-08-05 04:57:33 +00:00

readme.md

The github-actions manager extracts dependencies from GitHub Actions workflow and workflow template files.

If you like to use digest pinning but want to follow the action version tag, you can use the following sample:

name: build

on: [push]

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@af513c7a016048ae468971c52ed77d9562c7c819 # renovate: tag=v1.0.0

Renovate will update the commit SHA but follow the GitHub tag you specified. Renovate can update digests that use SHA1 and SHA256 algorithms.

If you want to automatically pin action digests add the helpers:pinGitHubActionDigests preset to the extends array:

{
  "extends": ["helpers:pinGitHubActionDigests"]
}