v1.4.2
What's changed
Supply chain & security hardening
- Pin all GitHub Actions to full commit SHAs
- Add Dependabot for GitHub Actions, Docker, and pip
- Add Semgrep SAST and CodeQL analysis in CI
- Hash-lock pip dependencies in the Docker image
- Pin Docker base image by digest
Release
- Pin
action.ymltoghcr.io/fendora-io/sieve-action:v1.4.2instead of:latest - Update README examples to
@v1.4.2
Usage
- uses: fendora-io/sieve-action@v1.4.2Full changelog: v1.4.1...v1.4.2