Skip to content

Show unpinned actions with file:line on frizbee failure#299

Open
tashian wants to merge 1 commit intomainfrom
carl/frizbee-better-errors
Open

Show unpinned actions with file:line on frizbee failure#299
tashian wants to merge 1 commit intomainfrom
carl/frizbee-better-errors

Conversation

@tashian
Copy link
Contributor

@tashian tashian commented Mar 4, 2026

Summary

  • On frizbee check failure, grep for the specific unpinned uses: lines and display them with file path and line number
  • Developers now see exactly which actions need pinning instead of just "Error: files were modified"

Example output:

The following actions are not pinned to a SHA digest:

.github/workflows/dependabot-auto-merge.yml:14:      - uses: dependabot/fetch-metadata@v2
.github/workflows/dependabot-auto-merge.yml:19:      - uses: actions/github-script@v7

Fix with: frizbee actions .github/workflows/

Test plan

  • Trigger frizbee check on a repo with unpinned actions and verify the improved output

🤖 Generated with Claude Code

@tashian @claude
Show unpinned actions with file:line on frizbee failure
92fa6b3 
When frizbee detects unpinned actions, the error output only says
"files were modified" with no detail. On failure, grep for the
specific unpinned uses: lines so developers know exactly what to fix.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
@tashian tashian requested a review from a team as a code owner March 4, 2026 01:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dopey dopey dopey approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@tashian @dopey