Issues details
Set up the CI pipeline when making a release to make them "Immutable" to prevent git tag hijacks. This makes it safer to use a release version instead of pinning to a full hash.
https://docs.github.com/en/code-security/concepts/supply-chain-security/immutable-releases
I want to be able to run my CI with the pr-agent github action with a version pin instead of a commit hash.
Issues details
Set up the CI pipeline when making a release to make them "Immutable" to prevent git tag hijacks. This makes it safer to use a release version instead of pinning to a full hash.
https://docs.github.com/en/code-security/concepts/supply-chain-security/immutable-releases
I want to be able to run my CI with the pr-agent github action with a version pin instead of a commit hash.