Viktor Szakats ef068fc8b7 GHA: pin containers to hash (where missing) ... Fixing this with zizmor v1.25.0: ``` error[unpinned-images]: unpinned image references --> .github/workflows/linux-old.yml:59:5 59 | container: 'debian:stretch' | ^^^^^^^^^^^^^^^^^^^^^^^^^^^ container image is not pinned to a SHA256 hash = help: audit documentation -> https://docs.zizmor.sh/audits/#unpinned-images [...] ``` Ref: https://github.com/curl/curl/actions/runs/25890035949/job/76090925291?pr=21618 Sadly there is no automatic mechanism to bump them.. Also: - replace `debian-stretch` with its slim variant. - bump one of the two Alpine jobs from 3.20 to 3.23.4. Closes #21619		2026-05-15 01:37:39 +02:00
..
appveyor-status.yml	GHA/appveyor-status: disable gh tool telemetry	2026-04-23 10:26:10 +02:00
checkdocs.yml	CI: set DO_NOT_TRACK=1	2026-04-23 11:22:35 +02:00
checksrc.yml	GHA: explicitly brew update before brew install with Linuxbrew	2026-05-14 14:26:43 +02:00
checkurls.yml	CI: set DO_NOT_TRACK=1	2026-04-23 11:22:35 +02:00
codeql.yml	GHA: explicitly brew update before brew install with Linuxbrew	2026-05-14 14:26:43 +02:00
configure-vs-cmake.yml	CI: set DO_NOT_TRACK=1	2026-04-23 11:22:35 +02:00
curl-for-win.yml	GHA/curl-for-win: switch riscv job to debian:stable (testing broke)	2026-04-30 16:14:13 +02:00
distcheck.yml	GHA: bump actions and pips	2026-05-01 21:19:22 +02:00
fuzz.yml	CI: set DO_NOT_TRACK=1	2026-04-23 11:22:35 +02:00
http3-linux.yml	tidy-up: sort TLS backends, distros, alphabetically	2026-05-11 11:57:25 +02:00
label.yml	CI: set DO_NOT_TRACK=1	2026-04-23 11:22:35 +02:00
linux-old.yml	GHA: pin containers to hash (where missing)	2026-05-15 01:37:39 +02:00
linux.yml	GHA: pin containers to hash (where missing)	2026-05-15 01:37:39 +02:00
macos.yml	gnutls: fix more nettle 4+ compatibility issues	2026-05-12 05:33:08 +02:00
non-native.yml	GHA: bump actions and pips	2026-05-01 21:19:22 +02:00
windows.yml	GHA: bump actions and pips	2026-05-01 21:19:22 +02:00