chore(deps): Update GitHub Actions#56
Conversation
|
Warning Review limit reached
More reviews will be available in 46 minutes and 17 seconds. Learn how PR review limits work. Your organization has run out of usage credits. Purchase more credits in the billing tab to continue. ⌛ How to resolve this issue?After more reviews become available, a review can be triggered using the To avoid repeated limits, reduce automatic review volume by pausing incremental auto-reviews earlier, using label-based review opt-in, excluding WIP or generated PR titles, or requesting reviews manually when the PR is ready. If your team needs uninterrupted high-volume reviews, an organization admin can enable usage-based credits. 🚦 How do rate limits work?CodeRabbit enforces per-developer PR review limits for each organization. Most developers receive the normal plan review availability. For paid Pro and Pro+ PR reviews, CodeRabbit uses adaptive limits for sustained high-volume activity. When a developer's recent PR review activity reaches the 95th percentile or higher among CodeRabbit users, additional reviews become available more gradually as earlier reviews age out of the rolling window. Please see our Fair Usage Limits Policy for further information. ℹ️ Review info⚙️ Run configurationConfiguration used: defaults Review profile: CHILL Plan: Pro Run ID: 📒 Files selected for processing (5)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
There was a problem hiding this comment.
Pull request overview
This PR updates the SHA pins for org-level reusable GitHub Actions workflows in this repo, moving callers from 671ea6d… to 987d517… to pick up patch-level fixes and security updates.
Changes:
- Re-pin the
python-security-analysisreusable workflow digest insecurity-analysis.yml. - Re-pin the
python-scorecardreusable workflow digest inscorecard.yml. - Re-pin the
python-qlty-coverageandpython-qlty-gatereusable workflow digests inqlty.yml.
Reviewed changes
Copilot reviewed 3 out of 3 changed files in this pull request and generated 4 comments.
| File | Description |
|---|---|
| .github/workflows/security-analysis.yml | Updates the reusable workflow SHA for the security analysis job. |
| .github/workflows/scorecard.yml | Updates the reusable workflow SHA for the OpenSSF Scorecard job. |
| .github/workflows/qlty.yml | Updates the reusable workflow SHAs for Qlty coverage upload and Qlty gate jobs. |
| pull-requests: write | ||
| actions: read | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-security-analysis.yml@671ea6d3bad0d0df346b6b401144e05a48172202 # main | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-security-analysis.yml@987d517d3c8e4b180f4dd15de6d9575f0df91182 # main |
| contents: read | ||
| actions: read | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-scorecard.yml@671ea6d3bad0d0df346b6b401144e05a48172202 # main | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-scorecard.yml@987d517d3c8e4b180f4dd15de6d9575f0df91182 # main |
| qlty: | ||
| if: github.event_name == 'push' | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-qlty-coverage.yml@671ea6d3bad0d0df346b6b401144e05a48172202 # main | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-qlty-coverage.yml@987d517d3c8e4b180f4dd15de6d9575f0df91182 # main |
| qlty-gate: | ||
| if: github.event_name == 'pull_request' | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-qlty-gate.yml@671ea6d3bad0d0df346b6b401144e05a48172202 # main | ||
| uses: ByronWilliamsCPA/.github/.github/workflows/python-qlty-gate.yml@987d517d3c8e4b180f4dd15de6d9575f0df91182 # main |
2221813 to
8cd167a
Compare
8cd167a to
0eb56a4
Compare
0eb56a4 to
9ea020b
Compare
9ea020b to
39ebc24
Compare
39ebc24 to
0688952
Compare
0688952 to
d2c4ed9
Compare
d2c4ed9 to
f07c13d
Compare
f07c13d to
255f57b
Compare
f19867e to
f0f580c
Compare
f0f580c to
0aaa232
Compare
0aaa232 to
e0d30d4
Compare
e0d30d4 to
9effd53
Compare
427ef8c to
788bb6d
Compare
788bb6d to
0e25ef4
Compare
|



Summary
Why
Scheduled patch update, bug fixes and security patches with no API changes.
Changes
This PR contains the following updates:
671ea6d→4b12bfea309ff8→ece7cb0Impact
Acceptance Criteria
Testing
Notes
Configuration
📅 Schedule: (in timezone America/New_York)
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Mend Renovate.