chore(ci): pin all GHA by chris-olszewski · Pull Request #419 · temporalio/sdk-ruby

chris-olszewski · 2026-04-16T18:00:54Z

What was changed

TSIA

Why?

Harden against a compromised GHA

Checklist

Closes N/A
How was this tested:
CI
Any docs updates needed?
N/A

GregoryTravis · 2026-04-16T18:23:27Z

    steps:
      - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4


What is the process for updating / maintaining these?

I relied on git ls-remote to fetch commits for each tag.

As far as updating, I am less concerned with being on bleeding edge for GHA compared to Ruby Gems. I'll probably come down to:

upgrades forced by GH runner deprecations

upgrades forced by requiring new feature/bug fix

chore(ci): pin all GHA

b0225b6

chris-olszewski requested a review from a team as a code owner April 16, 2026 18:00

Sushisource approved these changes Apr 16, 2026

View reviewed changes

GregoryTravis reviewed Apr 16, 2026

View reviewed changes

chris-olszewski merged commit b907bd0 into main Apr 16, 2026
7 checks passed

chris-olszewski deleted the olszewski/pin_gha branch April 16, 2026 19:29

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(ci): pin all GHA#419

chore(ci): pin all GHA#419
chris-olszewski merged 1 commit intomainfrom
olszewski/pin_gha

chris-olszewski commented Apr 16, 2026

Uh oh!

GregoryTravis Apr 16, 2026

Uh oh!

chris-olszewski Apr 16, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

chris-olszewski commented Apr 16, 2026

What was changed

Why?

Checklist

Uh oh!

GregoryTravis Apr 16, 2026

Choose a reason for hiding this comment

Uh oh!

chris-olszewski Apr 16, 2026

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants