It explains what it does, but not _why_, maybe I’m just not in the target audien... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		monkpit 25 days ago \| parent \| context \| favorite \| on: Frizbee is a tool you may throw a tag at and it co... It explains what it does, but not _why_, maybe I’m just not in the target audience. Can anyone enlighten me? If GitHub actions are stored in the repo as yaml then they’re already tracked - what’s this thing for?

skinfaxi 25 days ago [–]

This seems to convert action tags like action/checkout@v3 to action/checkout@sha to avoid malicious retags.

monkpit 25 days ago | [–]

That makes perfect sense! I knew I was missing something. Thanks.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact