inventree/InvenTree
2
0
Fork 0
mirror of https://github.com/inventree/InvenTree.git synced 2025-10-30 20:55:42 +00:00
Code Activity

chore: improve ci security (#9384)

Browse Source 
* pin docker files

* pin github actions

* enforce hashes that are already present

* run style checks on cicd changes
This commit is contained in:
Matthias Mair
2025-03-26 03:04:45 +01:00
committed by GitHub
parent 2bd26c0f49
commit 9bc0d599bc
6 changed files with 11 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
.devcontainer/Dockerfile
View File

@@ -3,7 +3,7 @@
# In contrast with the "production" image (which is based on an Alpine image)
# we use a Debian-based image for the devcontainer
FROM mcr.microsoft.com/devcontainers/python:3.11-bookworm
FROM mcr.microsoft.com/devcontainers/python:3.11-bookworm@sha256:5140e54af7a0399a4932dd4c4653d085fcf451b093d7424867df1828ffbb9b81
# InvenTree paths
ENV INVENTREE_HOME="/home/inventree"

2
.devcontainer/postCreateCommand.sh
View File

@@ -27,7 +27,7 @@ python3 -m pip install --upgrade pip
pip3 install --ignore-installed --upgrade invoke Pillow
# install base level packages
pip3 install -Ur contrib/container/requirements.txt
pip3 install -Ur --require-hashes contrib/container/requirements.txt
# Run initial InvenTree server setup
invoke update -s