Skip to content

Commit fe8827d

Browse files
authored
Merge pull request #39 from negillett/ci/typos-workflow
ci: add Typos spell-check workflow
2 parents f73720a + ea550fe commit fe8827d

7 files changed

Lines changed: 58 additions & 24 deletions

File tree

.github/actions/setup-python-pip/action.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -14,7 +14,7 @@ inputs:
1414
runs:
1515
using: composite
1616
steps:
17-
- uses: actions/setup-python@v6
17+
- uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # was `@v6`
1818
with:
1919
python-version: ${{ inputs.python-version }}
2020
check-latest: ${{ inputs.check-latest == 'true' }}

.github/workflows/ci.yml

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -21,7 +21,7 @@ jobs:
2121
runs-on: ubuntu-latest
2222
timeout-minutes: 10
2323
steps:
24-
- uses: actions/checkout@v6
24+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
2525

2626
- name: Resolve pinned intentproof-spec revision
2727
id: spec_pin
@@ -36,7 +36,7 @@ jobs:
3636
f.write(f"sha={c}\n")
3737
PY
3838
39-
- uses: actions/checkout@v6
39+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
4040
with:
4141
repository: IntentProof/intentproof-spec
4242
ref: ${{ steps.spec_pin.outputs.sha }}
@@ -52,7 +52,7 @@ jobs:
5252
runs-on: ubuntu-latest
5353
timeout-minutes: 10
5454
steps:
55-
- uses: actions/checkout@v6
55+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
5656

5757
- name: Resolve pinned intentproof-spec revision
5858
id: spec_pin
@@ -67,14 +67,14 @@ jobs:
6767
f.write(f"sha={c}\n")
6868
PY
6969
70-
- uses: actions/checkout@v6
70+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
7171
with:
7272
repository: IntentProof/intentproof-spec
7373
ref: ${{ steps.spec_pin.outputs.sha }}
7474
fetch-depth: 0
7575
path: intentproof-spec
7676

77-
- uses: actions/setup-node@v6
77+
- uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # was `@v6`
7878
with:
7979
node-version-file: intentproof-spec/.nvmrc
8080
cache: npm
@@ -87,7 +87,7 @@ jobs:
8787
runs-on: ubuntu-latest
8888
timeout-minutes: 10
8989
steps:
90-
- uses: actions/checkout@v6
90+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
9191

9292
- name: Resolve pinned intentproof-spec revision
9393
id: spec_pin
@@ -102,7 +102,7 @@ jobs:
102102
f.write(f"sha={c}\n")
103103
PY
104104
105-
- uses: actions/checkout@v6
105+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
106106
with:
107107
repository: IntentProof/intentproof-spec
108108
ref: ${{ steps.spec_pin.outputs.sha }}
@@ -125,7 +125,7 @@ jobs:
125125
audit:
126126
runs-on: ubuntu-latest
127127
steps:
128-
- uses: actions/checkout@v6
128+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
129129

130130
- uses: ./.github/actions/setup-python-pip
131131
with:
@@ -163,7 +163,7 @@ jobs:
163163
python-version: "3.14"
164164
check-latest: false
165165
steps:
166-
- uses: actions/checkout@v6
166+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
167167

168168
- name: Resolve pinned intentproof-spec revision
169169
id: spec_pin
@@ -178,7 +178,7 @@ jobs:
178178
f.write(f"sha={c}\n")
179179
PY
180180
181-
- uses: actions/checkout@v6
181+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
182182
with:
183183
repository: IntentProof/intentproof-spec
184184
ref: ${{ steps.spec_pin.outputs.sha }}

.github/workflows/conformance-attestation.yml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -27,7 +27,7 @@ jobs:
2727
PUBLISH_CONFORMANCE_ROOT: ${{ github.event_name == 'push' && (github.ref_name == 'main' || github.ref_name == 'master') && github.actor != 'github-actions[bot]' && github.actor != 'intentproof-cert-bot[bot]' }}
2828
steps:
2929
- name: Checkout SDK repository
30-
uses: actions/checkout@v6
30+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
3131
with:
3232
persist-credentials: false
3333

@@ -45,7 +45,7 @@ jobs:
4545
PY
4646
4747
- name: Checkout intentproof-spec
48-
uses: actions/checkout@v6
48+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
4949
with:
5050
repository: IntentProof/intentproof-spec
5151
ref: ${{ steps.spec_pin.outputs.sha }}
@@ -82,7 +82,7 @@ jobs:
8282
run: tox run -e static,cov
8383

8484
- name: Set up Node.js for spec oracle
85-
uses: actions/setup-node@v6
85+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # was `@v6`
8686
with:
8787
node-version-file: intentproof-spec/.nvmrc
8888
cache: npm
@@ -109,7 +109,7 @@ jobs:
109109
run: npm run validate:conformance-certificate
110110

111111
- name: Upload conformance report and certificate
112-
uses: actions/upload-artifact@v7
112+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # was `@v7`
113113
with:
114114
name: conformance-artifacts
115115
path: |
@@ -120,7 +120,7 @@ jobs:
120120
- name: Mint cert-bot installation token
121121
id: cert_bot_token
122122
if: ${{ env.PUBLISH_CONFORMANCE_ROOT == 'true' }}
123-
uses: actions/create-github-app-token@v1
123+
uses: actions/create-github-app-token@d72941d797fd3113feb6b93fd0dec494b13a2547 # was `@v1`
124124
with:
125125
app-id: ${{ vars.INTENTPROOF_CERT_BOT_ID }}
126126
private-key: ${{ secrets.INTENTPROOF_CERT_BOT_PRIVATE_KEY }}

.github/workflows/release.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ jobs:
2525
timeout-minutes: 10
2626
steps:
2727
- name: Verify required CI checks passed on release SHA
28-
uses: actions/github-script@v8
28+
uses: actions/github-script@ed597411d8f924073f98dfc5c65a23a2325f34cd # was `@v8`
2929
with:
3030
script: |
3131
const requiredExact = ["no-handwritten-model-types", "hardening", "intentproof-spec", "spec-golden-parity"];
@@ -70,7 +70,7 @@ jobs:
7070
id-token: write
7171
contents: read
7272
steps:
73-
- uses: actions/checkout@v6
73+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
7474

7575
- name: Resolve pinned intentproof-spec revision
7676
id: spec_pin
@@ -85,7 +85,7 @@ jobs:
8585
f.write(f"sha={c}\n")
8686
PY
8787
88-
- uses: actions/checkout@v6
88+
- uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
8989
with:
9090
repository: IntentProof/intentproof-spec
9191
ref: ${{ steps.spec_pin.outputs.sha }}
@@ -129,6 +129,6 @@ jobs:
129129
run: python -m build
130130

131131
- name: Publish to PyPI
132-
uses: pypa/gh-action-pypi-publish@release/v1
132+
uses: pypa/gh-action-pypi-publish@cef221092ed1bacb1cc03d23a2d87d1d172e277b # was `release/v1`
133133
with:
134134
packages-dir: dist/

.github/workflows/spec-conformance.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -25,7 +25,7 @@ jobs:
2525

2626
steps:
2727
- name: Checkout SDK repository
28-
uses: actions/checkout@v6
28+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
2929

3030
- name: Resolve pinned intentproof-spec revision
3131
id: spec_pin
@@ -41,7 +41,7 @@ jobs:
4141
PY
4242
4343
- name: Checkout intentproof-spec
44-
uses: actions/checkout@v6
44+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
4545
with:
4646
repository: IntentProof/intentproof-spec
4747
ref: ${{ steps.spec_pin.outputs.sha }}
@@ -62,7 +62,7 @@ jobs:
6262
run: tox run -e static,cov
6363

6464
- name: Set up Node.js for spec oracle
65-
uses: actions/setup-node@v6
65+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # was `@v6`
6666
with:
6767
node-version-file: intentproof-spec/.nvmrc
6868
cache: npm
@@ -81,7 +81,7 @@ jobs:
8181
cp intentproof-spec/conformance-report.json conformance-report.json
8282
8383
- name: Upload conformance report artifact
84-
uses: actions/upload-artifact@v7
84+
uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # was `@v7`
8585
with:
8686
name: conformance-report-python
8787
path: conformance-report.json

.github/workflows/typos.yml

Lines changed: 25 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,25 @@
1+
name: Typos
2+
3+
on:
4+
pull_request:
5+
push:
6+
branches: [main, master]
7+
8+
permissions:
9+
contents: read
10+
11+
concurrency:
12+
group: typos-${{ github.workflow }}-${{ github.event.pull_request.number || github.ref }}
13+
cancel-in-progress: true
14+
15+
jobs:
16+
typos:
17+
name: Spell check
18+
runs-on: ubuntu-latest
19+
timeout-minutes: 10
20+
steps:
21+
- name: Checkout
22+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # was `@v6`
23+
24+
- name: Run typos
25+
uses: crate-ci/typos@5374cbf686e897b15713110e233094e2874de7ef # was `@v1`

.typos.toml

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
# Typos — https://github.com/crate-ci/typos
2+
# CI: .github/workflows/typos.yml
3+
4+
[files]
5+
extend-exclude = ["package-lock.json"]
6+
7+
[default.extend-words]
8+
# Placeholder Stripe-style IDs; tokenizer can flag “SAMPL” inside “…SAMPLE…”.
9+
SAMPL = "SAMPL"

0 commit comments

Comments
 (0)