renovate

mirror of https://github.com/renovatebot/renovate.git synced 2025-01-14 16:46:25 +00:00

History

Michael Kriese 64f5bd5f03 test: enforce lint style rules (#15085 )		2022-04-12 14:49:49 +00:00
..
__fixtures__	fix(manager/github-actions): renovate propose to delete YAML inline comments (#14757 )	2022-03-25 09:55:44 +00:00
__snapshots__	fix(manager/github-actions): renovate propose to delete YAML inline comments (#14757 )	2022-03-25 09:55:44 +00:00
extract.spec.ts	test: enforce lint style rules (#15085 )	2022-04-12 14:49:49 +00:00
extract.ts	fix(manager/github-actions): renovate propose to delete YAML inline comments (#14757 )	2022-03-25 09:55:44 +00:00
index.ts	fix(github-actions): tighten fileMatch (#14983 )	2022-04-07 08:00:58 +02:00
readme.md	refactor: lib/modules (#14488 )	2022-03-04 09:04:02 +01:00

readme.md

The github-actions manager extracts dependencies from GitHub Actions workflow and workflow template files.

If you like to use digest pinning but want to follow the action version tag, you can use the following sample:

name: build

on: [push]

jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@af513c7a016048ae468971c52ed77d9562c7c819 # renovate: tag=v1.0.0

Renovate will update the commit SHA but follow the GitHub tag you specified. Renovate can update digests that use SHA1 and SHA256 algorithms.

If you want to automatically pin action digests add the helpers:pinGitHubActionDigests preset to the extends array:

{
  "extends": ["helpers:pinGitHubActionDigests"]
}