From 92e285fcd9a4360db6315557ccbe9b41ba3afeb7 Mon Sep 17 00:00:00 2001 From: Matthew Feickert Date: Thu, 1 Jun 2023 01:03:16 -0500 Subject: [PATCH] MNT: Use commit SHA of cibuildwheel action release * For security best practices pin at the commit sha corresponding to the last stable release and let Dependabot update the commit SHA and comment as new releases come out. - c.f. https://github.com/scientific-python/upload-nightly-action --- .github/workflows/cibuildwheel.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/cibuildwheel.yml b/.github/workflows/cibuildwheel.yml index bf84c99fe3bc..babed29aab6e 100644 --- a/.github/workflows/cibuildwheel.yml +++ b/.github/workflows/cibuildwheel.yml @@ -136,7 +136,7 @@ jobs: path: dist/ - name: Build wheels for CPython 3.11 - uses: pypa/cibuildwheel@v2.13.0 + uses: pypa/cibuildwheel@51f5c7fe68ff24694d5a6ac0eb3ad476ddd062a8 # v2.13.0 with: package-dir: dist/${{ needs.build_sdist.outputs.SDIST_NAME }} env: @@ -144,7 +144,7 @@ jobs: CIBW_ARCHS: ${{ matrix.cibw_archs }} - name: Build wheels for CPython 3.10 - uses: pypa/cibuildwheel@v2.13.0 + uses: pypa/cibuildwheel@51f5c7fe68ff24694d5a6ac0eb3ad476ddd062a8 # v2.13.0 with: package-dir: dist/${{ needs.build_sdist.outputs.SDIST_NAME }} env: @@ -152,7 +152,7 @@ jobs: CIBW_ARCHS: ${{ matrix.cibw_archs }} - name: Build wheels for CPython 3.9 - uses: pypa/cibuildwheel@v2.13.0 + uses: pypa/cibuildwheel@51f5c7fe68ff24694d5a6ac0eb3ad476ddd062a8 # v2.13.0 with: package-dir: dist/${{ needs.build_sdist.outputs.SDIST_NAME }} env: @@ -160,7 +160,7 @@ jobs: CIBW_ARCHS: ${{ matrix.cibw_archs }} - name: Build wheels for PyPy - uses: pypa/cibuildwheel@v2.13.0 + uses: pypa/cibuildwheel@51f5c7fe68ff24694d5a6ac0eb3ad476ddd062a8 # v2.13.0 with: package-dir: dist/${{ needs.build_sdist.outputs.SDIST_NAME }} env: