Using hashes for all actions

[bsipocz]

No description provided.

[Carreau]

@tupui you said that maybe we had to use hash:hash ?

[matthewfeickert]

I'm slightly less concerned about these for projects that are known. But maybe I don't understand @tupui's point.

[tupui]

I am trying to find where I read that 😅 Still digging but yes the hack was that if you had a branch named as the hash, then it would be picked up. In the article they were mentioning some protections from GitHub but there was still a way to do the hack IIRC.

[bsipocz]

Given that we didn't find the syntax of specifying that the hash is a hash, let's go ahead with this as is. I tried to create 40 long hexa branches but couldn't do that on the GH web interface, nor I could push such a branch from a local checkout.

[stefanv]

Normal for CI to fail?

[bsipocz]

Normal for CI to fail?

I believe it is expected to fails for all but @matthewfeickert

[matthewfeickert]

Normal for CI to fail?

I believe it is expected to fails for all but @matthewfeickert

No, it has nothing to do with my account, it just will always fail if a PR from a fork as the CI requires secrets that are repo/org specific, as described in #32 (comment)

[matthewfeickert]

Given that we didn't find the syntax of specifying that the hash is a hash, let's go ahead with this as is. I tried to create 40 long hexa branches but couldn't do that on the GH web interface, nor I could push such a branch from a local checkout.

SGTM, so let's merge.

[bsipocz]

No, it has nothing to do with my account, it just will always fail if a PR from a fork

Oh, ok. I haven't realized that you didn't open your PRs from your fork, just noticed that those all have the green tickmarks while the rest are crossed out.