{"id":47760406,"url":"https://github.com/centreon/github-actions-ensure-sha-pinned-actions","last_synced_at":"2026-04-03T05:21:07.048Z","repository":{"id":345733790,"uuid":"1179896991","full_name":"centreon/github-actions-ensure-sha-pinned-actions","owner":"centreon","description":"A Github Action to ensure that actions are pinned to full length commit SHAs","archived":false,"fork":false,"pushed_at":"2026-03-20T11:35:37.000Z","size":2694,"stargazers_count":0,"open_issues_count":2,"forks_count":0,"subscribers_count":0,"default_branch":"develop","last_synced_at":"2026-03-21T04:04:40.527Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"JavaScript","has_issues":false,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/centreon.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":".github/CONTRIBUTING.md","funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":".github/CODEOWNERS","security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-03-12T13:48:23.000Z","updated_at":"2026-03-20T11:35:40.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/centreon/github-actions-ensure-sha-pinned-actions","commit_stats":null,"previous_names":["centreon/github-actions-ensure-sha-pinned-actions"],"tags_count":1,"template":false,"template_full_name":null,"purl":"pkg:github/centreon/github-actions-ensure-sha-pinned-actions","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/centreon%2Fgithub-actions-ensure-sha-pinned-actions","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/centreon%2Fgithub-actions-ensure-sha-pinned-actions/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/centreon%2Fgithub-actions-ensure-sha-pinned-actions/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/centreon%2Fgithub-actions-ensure-sha-pinned-actions/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/centreon","download_url":"https://codeload.github.com/centreon/github-actions-ensure-sha-pinned-actions/tar.gz/refs/heads/develop","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/centreon%2Fgithub-actions-ensure-sha-pinned-actions/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31335732,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-03T04:42:29.251Z","status":"ssl_error","status_checked_at":"2026-04-03T04:42:12.667Z","response_time":107,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2026-04-03T05:21:06.364Z","updated_at":"2026-04-03T05:21:07.039Z","avatar_url":"https://github.com/centreon.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# GitHub Action — Ensure SHA Pinned Actions\n[![CI](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/actions/workflows/ci.yml/badge.svg)](https://github.com/zgosalvez/github-actions-ensure-sha-pinned-actions/actions/workflows/ci.yml)\n\nThis GitHub Action (written in JavaScript) allows you to leverage GitHub Actions to ensure that GitHub Actions are pinned to full length commit SHAs. This does not fail for referenced actions in the same repository when using the [`./path/to/dir` syntax](https://docs.github.com/actions/learn-github-actions/finding-and-customizing-actions#referencing-an-action-in-the-same-repository-where-a-workflow-file-uses-the-action). For more information, see \"[using third-party actions](https://docs.github.com/en/free-pro-team@latest/actions/learn-github-actions/security-hardening-for-github-actions#using-third-party-actions).\"\n\n## Usage\n### Pre-requisites\nCreate a workflow `.yml` file in your `.github/workflows` directory. An [example workflow](#common-workflow) is available below. For more information, reference the GitHub Help Documentation for [Creating a workflow file](https://help.github.com/en/articles/configuring-a-workflow#creating-a-workflow-file).\n\n### Inputs\nFor more information on these inputs, see the [Workflow syntax for GitHub Actions](https://docs.github.com/actions/reference/workflow-syntax-for-github-actions#jobsjob_idstepswith)\n\n- `allowlist`: The list of owners or repositories that will be ignored and will not throw an error. Each entry must be on a new line. Optional. Default: `` (deny all). For example,\n```yaml\n  allowlist: |\n    aws-actions/          # Trust all actions published by aws-actions\n    docker/login-action   # Trust docker's login-action only\n```\n- `dry_run`: Set to `true` to show warnings instead of failing. Optional. Default: `false` (fail on any error)\n\n### Outputs\nNone. This action will throw an error if it finds any GitHub Action that is not pinned to a full length commit SHAs.\n\n*Note:* Only the first error encountered will be reported.\n\n### Common workflow\n\nIdeally, set this up as an initial job for your workflows. For example:\n```yaml\non: push\n\nname: Continuous Integration\n\njobs:\n  harden_security:\n    name: Harden Security\n    runs-on: ubuntu-latest\n    steps:\n      - name: Checkout code\n        uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # v2.3.4\n      - name: Ensure SHA pinned actions\n        uses: zgosalvez/github-actions-ensure-sha-pinned-actions@v2 # Replace this\n        with:\n          allowlist: |\n            aws-actions/\n            docker/login-action\n```\n\n## Contributing\nSee [the contributing guide](.github/CONTRIBUTING.md) for detailed instructions on how to get started with our project.\n\n## License\nThe scripts and documentation in this project are released under the [MIT License](LICENSE.md)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcentreon%2Fgithub-actions-ensure-sha-pinned-actions","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcentreon%2Fgithub-actions-ensure-sha-pinned-actions","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcentreon%2Fgithub-actions-ensure-sha-pinned-actions/lists"}