matrei commented on code in PR #69:
URL:
https://github.com/apache/grails-github-actions/pull/69#discussion_r3031657975
##########
.github/workflows/release.yml:
##########
@@ -181,12 +181,12 @@ jobs:
cd dev-repo
svn info "$VERSION" > "DIST_SVN_REVISION.txt"
- name: "📤 Upload the Distribution SVN revision file"
- uses: softprops/action-gh-release@v2
+ uses:
softprops/action-gh-release@153bb8e04406b158c6c84fc1615b65b24149a1fe
Review Comment:
> Dependabot updates the version documentation of GitHub Actions when the
comment is on the same line, such as actions/checkout@<commit> #<tag or link>
or actions/checkout@<tag> #<tag or link>.
(https://docs.github.com/en/actions/reference/security/secure-use#keeping-the-actions-in-your-workflows-secure-and-up-to-date)
@jdaugherty I think dependabot will update existing versions comments on the
same line.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
