ci(bluebuild): pin actions to node20-safe tags #9

Merged

s8n merged 1 commit from feat/runner-fix-node20-pinning into v0.7-bluebuild-spike

2026-05-06 13:54:31 +01:00

Author	SHA1	Message	Date
claude-veilor-bot	04aa56a865	ci(bluebuild): pin actions to node20-safe tags Some checks failed Build veilor-os OCI (BlueBuild) / Build + sign + push OCI (pull_request) Failing after 0s Details Lint / Kickstart syntax (pull_request) Failing after 0s Details Lint / Shell scripts (pull_request) Failing after 0s Details Lint / No personal/onyx leaks (pull_request) Failing after 0s Details forgejo-runner v6.4.0 javascript runtime is node20. Pin every javascript action used in the spike branch's workflows to the last release that ships node20. - actions/checkout v4 -> v4.1.7 (3 files) - softprops/action-gh-release v2 -> v2.0.4 (build-iso) - anchore/sbom-action v0 -> v0.17.2 - actions/attest-build-provenance v2 -> v2.2.3 - blue-build/github-action@v1 unchanged (TODO: SHA pin) This is the spike-branch counterpart of the main-branch fix in feat/runner-fix-docker-sock-and-node20. Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-06 13:54:12 +01:00

Author

SHA1

Message

Date

claude-veilor-bot

04aa56a865

ci(bluebuild): pin actions to node20-safe tags

Build veilor-os OCI (BlueBuild) / Build + sign + push OCI (pull_request) Failing after 0s

Details

Lint / Kickstart syntax (pull_request) Failing after 0s

Details

Lint / Shell scripts (pull_request) Failing after 0s

Details

Lint / No personal/onyx leaks (pull_request) Failing after 0s

Details

forgejo-runner v6.4.0 javascript runtime is node20. Pin every
javascript action used in the spike branch's workflows to the last
release that ships node20.

- actions/checkout v4 -> v4.1.7 (3 files)
- softprops/action-gh-release v2 -> v2.0.4 (build-iso)
- anchore/sbom-action v0 -> v0.17.2
- actions/attest-build-provenance v2 -> v2.2.3
- blue-build/github-action@v1 unchanged (TODO: SHA pin)

This is the spike-branch counterpart of the main-branch fix in
feat/runner-fix-docker-sock-and-node20.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-06 13:54:12 +01:00