Skip to content

Commit f5b929f

Browse files
ci: Enforce pinned pip dependencies
This should give us a 10/10 OpenSSF rating for pinned dependencies.
1 parent d723815 commit f5b929f

File tree

2 files changed

+2
-2
lines changed

2 files changed

+2
-2
lines changed

.github/workflows/build_and_test.yaml

+1-1
Original file line numberDiff line numberDiff line change
@@ -56,7 +56,7 @@ jobs:
5656

5757
- name: Install dependencies
5858
run: |
59-
pip install -r tests/integration/requirements.txt
59+
pip install --require-hashes -r tests/integration/requirements.txt
6060
6161
- name: Execute integration tests
6262
run: |

.github/workflows/compliance.yaml

+1-1
Original file line numberDiff line numberDiff line change
@@ -17,7 +17,7 @@ jobs:
1717
run: |
1818
sudo apt update
1919
sudo apt -qy --no-install-recommends install clang-format-14
20-
pip3 install -r tools/requirements-compliance.txt
20+
pip3 install --require-hashes -r tools/requirements-compliance.txt
2121
2222
- name: Check commits with gitlint
2323
run: |

0 commit comments

Comments
 (0)