(nifi) branch main updated: NIFI-15750 Switched Anchore GitHub Actions to hash references

Thu, 26 Mar 2026 09:39:28 -0700 

This is an automated email from the ASF dual-hosted git repository.

exceptionfactory pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/nifi.git


The following commit(s) were added to refs/heads/main by this push:
     new 362a90268d9 NIFI-15750 Switched Anchore GitHub Actions to hash 
references
362a90268d9 is described below

commit 362a90268d9f6c0d5dbcb2e815a05fcc36e35bf1
Author: Pierre Villard <[email protected]>
AuthorDate: Thu Mar 26 13:52:31 2026 +0100

    NIFI-15750 Switched Anchore GitHub Actions to hash references
    
    - Switched setup-uv to pip install uv
    
    This closes #11048
    
    Signed-off-by: David Handermann <[email protected]>
---
 .github/workflows/code-compliance.yml | 4 ++--
 .github/workflows/system-tests.yml    | 5 +----
 2 files changed, 3 insertions(+), 6 deletions(-)

diff --git a/.github/workflows/code-compliance.yml 
b/.github/workflows/code-compliance.yml
index ab068ecbf37..a50c6722de2 100644
--- a/.github/workflows/code-compliance.yml
+++ b/.github/workflows/code-compliance.yml
@@ -97,7 +97,7 @@ jobs:
       - name: Get Project Version
         run: echo "PROJECT_VERSION=$(./mvnw help:evaluate 
-Dexpression=project.version -q -DforceStdout)" >> $GITHUB_ENV
       - name: Generate SBOM
-        uses: anchore/sbom-action@v0
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610 # 
v0.24.0
         with:
           format: spdx-json
           path: ''
@@ -105,7 +105,7 @@ jobs:
           artifact-name: nifi-${{ env.PROJECT_VERSION }}.spdx.json
           output-file: nifi-${{ env.PROJECT_VERSION }}.spdx.json
       - name: Scan SBOM
-        uses: anchore/scan-action@v7
+        uses: anchore/scan-action@e1165082ffb1fe366ebaf02d8526e7c4989ea9d2 # 
v7.4.0
         with:
           sbom: nifi-${{ env.PROJECT_VERSION }}.spdx.json
           severity-cutoff: 'medium'
diff --git a/.github/workflows/system-tests.yml 
b/.github/workflows/system-tests.yml
index a7c0d54b1a8..150cc724f9a 100644
--- a/.github/workflows/system-tests.yml
+++ b/.github/workflows/system-tests.yml
@@ -106,10 +106,7 @@ jobs:
         with:
           python-version: '3.10'
       - name: Set up Astral uv
-        uses: astral-sh/setup-uv@v5
-        with:
-          python-version: '3.10'
-          enable-cache: false
+        run: pip install uv
 
       - name: Build Dependencies
         env:

Reply via email to