Commit graph

6 commits

Author SHA1 Message Date
Kenta Kubo
e8426f1465
ci: restrict permissions 2025-10-11 22:18:27 +09:00
Kenta Kubo
f587bdf722
ci: pin GitHub Actions dependencies to commit SHA
This is a defense against supply chain attacks. Moreover, GitHub
[recommends SHA
pinning](https://github.blog/changelog/2025-08-15-github-actions-policy-now-supports-blocking-and-sha-pinning-actions/) these days. Even with this change, dependabot should continue to function.
2025-10-01 00:59:08 +09:00
Kenta Kubo
e102e47f50 ci: bump Swift to 6.2 2025-09-19 00:53:54 +09:00
dependabot[bot]
cdd65efb28
ci: bump actions/checkout from 4 to 5
Bumps [actions/checkout](https://github.com/actions/checkout) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-version: '5'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-08-18 12:17:34 +00:00
Kenta Kubo
48c8612f2c
ci: use GitHub-hosted arm64 Linux runners
https://github.com/orgs/community/discussions/148648
2025-04-16 00:06:18 +09:00
Kenta Kubo
dcb6962205
ci: add CI 2025-04-06 05:53:45 +09:00