Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: DeterminateSystems/update-flake-lock
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v22
Choose a base ref
...
head repository: DeterminateSystems/update-flake-lock
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v23
Choose a head ref
  • 10 commits
  • 7 files changed
  • 6 contributors

Commits on Jun 5, 2024

  1. Update detsys-ts for: Merge pull request #51 from DeterminateSystems/… 

    …add-missing-actions-to-update-matrix

Add missing Actions to update matrix (515d00bc192ae4460e2122572ebc24020c58ea95)
    @lucperkins
    lucperkins authored Jun 5, 2024
    Configuration menu
    Copy the full SHA
    d777dd2 View commit details
    Browse the repository at this point in the history

  2. Update detsys-ts for: ` (bc45b6c0a6318ae30192c4bf23a73dc879bdb632`)

    @lucperkins
    lucperkins authored Jun 5, 2024
    Configuration menu
    Copy the full SHA
    50c97e1 View commit details
    Browse the repository at this point in the history

  3. Update detsys-ts for: `Merge pull request #113 from DeterminateSyst… 

    …ems/update-detsys-ts-status-page` (`856a75af22949b76e23f6e54a1b4d27d8816cea4`)
    @lucperkins
    lucperkins authored Jun 5, 2024
    Configuration menu
    Copy the full SHA
    b8b46eb View commit details
    Browse the repository at this point in the history

  4. Merge pull request #116 from detsys-pr-bot/detsys-ts-update-856a75af2… 

    …2949b76e23f6e54a1b4d27d8816cea4

Update `detsys-ts`: Merge pull request #113 from DeterminateSystems/update-detsys-ts-status-page
    @grahamc
    grahamc authored Jun 5, 2024
    Configuration menu
    Copy the full SHA
    23e86b4 View commit details
    Browse the repository at this point in the history

  5. Regenerate dist

    @lucperkins
    lucperkins committed Jun 5, 2024
    Configuration menu
    Copy the full SHA
    1b00b72 View commit details
    Browse the repository at this point in the history

  6. Merge pull request #114 from detsys-pr-bot/detsys-ts-update-515d00bc1… 

    …92ae4460e2122572ebc24020c58ea95

Update detsys-ts: Merge pull request #51 from DeterminateSystems/add-missing-actions-to-update-matrix

Add missing Actions to update matrix
    @lucperkins
    lucperkins authored Jun 5, 2024
    Configuration menu
    Copy the full SHA
    278b2c0 View commit details
    Browse the repository at this point in the history

  7. Merge pull request #115 from detsys-pr-bot/detsys-ts-update-bc45b6c0a… 

    …6318ae30192c4bf23a73dc879bdb632

Update `detsys-ts`:
    @lucperkins
    lucperkins authored Jun 5, 2024
    Configuration menu
    Copy the full SHA
    ed0fe82 View commit details
    Browse the repository at this point in the history

Commits on Jun 18, 2024

  1. Lock third-party actions 

    A caller of this action can lock this action to a specific commit. However because the action itself does not lock its dependent actions to a specific commit this opens the end-user up to possible supply-chain attacks if the dependent actions rewrite their tags.

This PR changes all third party actions to be explicitly locked.

Dependabot will still work and update these hashes for you


I also suggest installing https://github.com/ossf/scorecard in this repo. It will report about these kind of issues.

Note that you should in turn have to audit all the third party deps of the actions that your action depends on. In general this is all a bit of a mess and GitHub's security model is very meh

e.g. see ossf/scorecard#2189
    @arianvp @cole-h
    arianvp authored and cole-h committed Jun 18, 2024
    Configuration menu
    Copy the full SHA
    af9a980 View commit details
    Browse the repository at this point in the history

  2. Add instructions for new fine grained GitHub PAT

    @ibizaman @cole-h
    ibizaman authored and cole-h committed Jun 18, 2024
    Configuration menu
    Copy the full SHA
    b0723e0 View commit details
    Browse the repository at this point in the history

Commits on Jun 28, 2024

  1. Fixup support for Nix 2.23.0 and later

    @cole-h
    cole-h committed Jun 28, 2024
    Configuration menu
    Copy the full SHA
    db4ee38 View commit details
    Browse the repository at this point in the history
Loading