chore(renovate): add pinDigests for GitHub Actions SHA pinning #24

Merged

privilegedescalation-engineer[bot] merged 1 commits from chore/renovate-pin-digests into main

2026-03-22 11:13:24 +00:00

Author	SHA1	Message	Date
Gandalf the Greybeard	ee3cdc63f1	chore(renovate): add pinDigests for GitHub Actions SHA pinning Adds pinDigests: true so Renovate pins all GitHub Actions references to full commit SHAs for supply-chain hardening. This repo extends config:recommended directly, so pinDigests must be set here explicitly — the org-level config alone is not sufficient. Recreated from main after closing stale PR #23 (branch was created before the dual-approval PR #22 landed). Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-03-22 07:50:37 +00:00

Author

SHA1

Message

Date

Gandalf the Greybeard

ee3cdc63f1

chore(renovate): add pinDigests for GitHub Actions SHA pinning

Adds pinDigests: true so Renovate pins all GitHub Actions references to
full commit SHAs for supply-chain hardening. This repo extends
config:recommended directly, so pinDigests must be set here explicitly —
the org-level config alone is not sufficient.

Recreated from main after closing stale PR #23 (branch was created before
the dual-approval PR #22 landed).

Co-Authored-By: Paperclip <noreply@paperclip.ing>

2026-03-22 07:50:37 +00:00

chore(renovate): add pinDigests for GitHub Actions SHA pinning #24

1 Commits