orcs-oss/orcs-code
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
71a3f36e9593057ccb624acb9f7df4be75093c09
orcs-code/.github/workflows/pr-checks.yml
Juan Camilo 3ca6c299d6 security: pin GitHub Actions to immutable SHA digests 
Pin all GitHub Actions to commit SHA instead of mutable version tags
to prevent supply chain attacks via tag poisoning. This is especially
important for third-party actions like oven-sh/setup-bun.
2026-04-02 11:09:19 +02:00

38 lines
852 B
YAML
Raw Blame History

name: PR Checks
on:
pull_request:
push:
branches:
- main
jobs:
smoke-and-tests:
runs-on: ubuntu-latest
steps:
- name: Check out repository
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
- name: Set up Node.js
uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
with:
node-version: 22
- name: Set up Bun
uses: oven-sh/setup-bun@4bc047ad259df6fc24a6c9b0f9a0cb08cf17fbe5 # v2.0.1
with:
bun-version: 1.3.11
- name: Install dependencies
run: bun install --frozen-lockfile
- name: Smoke check
run: bun run smoke
- name: Provider tests
run: bun run test:provider
- name: Provider recommendation tests
run: npm run test:provider-recommendation
Reference in New Issue View Git Blame Copy Permalink