Mickael Maison created KAFKA-17193:
--------------------------------------
Summary: Pin external GitHub actions to specific git hash
Key: KAFKA-17193
URL: https://issues.apache.org/jira/browse/KAFKA-17193
Project: Kafka
Issue Type: Task
Reporter: Mickael Maison
As per [https://infra.apache.org/github-actions-policy.html] we must pin any
GitHub action that is not from the apache/*, github/* and actions/* namespaces
to a specific git hash.
We are currently using actions from aquasecurity and docker and these are not
pinned to specific git hashes.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
