renovate

mirror of https://github.com/renovatebot/renovate.git synced 2025-01-15 09:06:25 +00:00

History

Rhys Arkins 8868938978 fix(github-actions): check job before services		2023-01-17 15:41:49 +01:00
..
__fixtures__	feat(github-actions): Support for short tag comments (#18738 )	2022-11-04 13:20:46 +01:00
__snapshots__	feat(github-actions): Support for short tag comments (#18738 )	2022-11-04 13:20:46 +01:00
extract.spec.ts	fix(github-actions): Fix hash extraction (#18927 )	2022-11-15 09:47:22 -06:00
extract.ts	fix(github-actions): check job before services	2023-01-17 15:41:49 +01:00
index.ts	fix(manager/github-actions): wrong supportedDatasources entry (#18734 )	2022-11-03 13:58:02 +00:00
readme.md	refactor: lib/modules (#14488 )	2022-03-04 09:04:02 +01:00
types.ts	feat(github-actions): update job and service containers (#16770 )	2022-08-05 04:57:33 +00:00

readme.md

The github-actions manager extracts dependencies from GitHub Actions workflow and workflow template files.

If you like to use digest pinning but want to follow the action version tag, you can use the following sample:

name: build

on: [push]

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@af513c7a016048ae468971c52ed77d9562c7c819 # renovate: tag=v1.0.0

Renovate will update the commit SHA but follow the GitHub tag you specified. Renovate can update digests that use SHA1 and SHA256 algorithms.

If you want to automatically pin action digests add the helpers:pinGitHubActionDigests preset to the extends array:

{
  "extends": ["helpers:pinGitHubActionDigests"]
}