veilor-os

History

s8n f2e36bfead ci(bluebuild): pin blue-build/github-action to commit SHA Replace @v1 with @24d146df25adc2cf579e918efe2d9bff6adea408 (the commit v1 currently resolves to). Tag pins on third-party actions are mutable — a maintainer or attacker can re-point v1 at a malicious commit and silently change what runs on every push. Trailing comment '# v1' preserves human readability for future bumps. Refs: 9-agent CI hardening wave (agent 8), 2026-05-05.		2026-05-06 10:32:13 +01:00
..
build-bluebuild.yml	ci(bluebuild): pin blue-build/github-action to commit SHA	2026-05-06 10:32:13 +01:00
build-iso.yml	ci: drop updates repo (3x 404 on its zchunk repodata)	2026-05-03 04:15:12 +01:00
lint.yml	ci: scope brand-leak lint to source dirs only (#6 )	2026-05-02 04:07:03 +01:00