pinact

Pins GitHub Actions to full hashes and versions for reproducibility

brewmacoslinux

Try with needOr install directly

About

Pins GitHub Actions to full hashes and versions

pinact

Pin all GitHub Actions in a workflow file to full commit hashes$ pinact .github/workflows/main.yml

Pin actions in all workflow files in a directory$ pinact .github/workflows/

Pin actions and show the changes made$ pinact --verbose .github/workflows/ci.yml