(spark-kubernetes-operator) branch main updated: [SPARK-57107] Pin `apache/skywalking-eyes` to `v0.8.0` commit SHA

Wed, 27 May 2026 11:20:11 -0700 

This is an automated email from the ASF dual-hosted git repository.

dongjoon-hyun pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/spark-kubernetes-operator.git


The following commit(s) were added to refs/heads/main by this push:
     new 4ced1de  [SPARK-57107] Pin `apache/skywalking-eyes` to `v0.8.0` commit 
SHA
4ced1de is described below

commit 4ced1de381ac921ef851f48ede398ab0e9acfb9b
Author: Dongjoon Hyun <[email protected]>
AuthorDate: Wed May 27 11:19:55 2026 -0700

    [SPARK-57107] Pin `apache/skywalking-eyes` to `v0.8.0` commit SHA
    
    ### What changes were proposed in this pull request?
    
    This PR aims to pin `apache/skywalking-eyes` to the `v0.8.0` commit SHA in 
`.github/workflows/build_and_test.yml`.
    
    ```yaml
    - uses: apache/skywalking-eyese9f91c35e4d4ae4420f722aa6598c4a13cc69093
    ```
    
    ### Why are the changes needed?
    
    To improve supply-chain security by pinning the third-party GitHub Action 
to an immutable commit SHA instead of the mutable `main` branch reference.
    
    ### Does this PR introduce _any_ user-facing change?
    
    No.
    
    ### How was this patch tested?
    
    Pass the CIs.
    
    ### Was this patch authored or co-authored using generative AI tooling?
    
    Generated-by: Claude Opus 4.7
    
    Closes #693 from dongjoon-hyun/SPARK-57107.
    
    Authored-by: Dongjoon Hyun <[email protected]>
    Signed-off-by: Dongjoon Hyun <[email protected]>
---
 .github/workflows/build_and_test.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/build_and_test.yml 
b/.github/workflows/build_and_test.yml
index 12e0dd8..be4bf46 100644
--- a/.github/workflows/build_and_test.yml
+++ b/.github/workflows/build_and_test.yml
@@ -22,7 +22,7 @@ jobs:
       - name: Checkout repository
         uses: actions/checkout@v6
       - name: Check license header
-        uses: apache/skywalking-eyes@main
+        uses: apache/skywalking-eyes@e9f91c35e4d4ae4420f722aa6598c4a13cc69093
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
         with:


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to