viscm icon indicating copy to clipboard operation
viscm copied to clipboard
verified publisher icon matplotlib

CI: Harden GHA configuration

Open tacaswell opened this issue 7 months ago • 1 comments

Apply recommended hardening steps including:

  • pinning to a SHA any actions used
  • not persisting the read token on checkout
  • setting the default permissions
  • adding a depandabot file for GHA

tacaswell avatar Jul 18 '25 16:07 tacaswell

The failures look like real test failures, not due these CI changes.

tacaswell avatar Jul 18 '25 18:07 tacaswell