Y
Hacker News
new
|
ask
|
show
|
jobs
by
mixologic
455 days ago
All the version tags got relabled to point to a compromised hash. Semver does nothing to help with this.
your build should always use hashes and not version tags of GHA's