Skip to content

chore: release v7.3.0 #562

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
Pr0methean wants to merge 1 commit into
base: master
Choose a base branch
from
Open

chore: release v7.3.0 #562

Pr0methean wants to merge 1 commit into from
+6 −0

Conversation

@Pr0methean
Copy link
Member

@Pr0methean Pr0methean commented Jan 25, 2026
edited
Loading

🤖 New release

  • zip: 7.3.0
Changelog

7.3.0 - 2026-01-26

🐛 Bug Fixes

  • make zip crate safer and more readable (#536)

This PR was generated with release-plz.

@gemini-code-assist
Copy link
Contributor

gemini-code-assist bot commented Jan 25, 2026

Note

Gemini is unable to generate a summary for this pull request due to the file types involved not being currently supported.

@Pr0methean Pr0methean enabled auto-merge January 25, 2026 21:08
@Pr0methean Pr0methean added this to the 7.3.0 milestone Jan 25, 2026
amazon-q-developer[bot]
amazon-q-developer bot reviewed Jan 25, 2026
View reviewed changes
Copy link
Contributor

@amazon-q-developer amazon-q-developer bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This PR successfully implements important security hardening measures for the release workflow:

Security Improvements:

  • Adds default permissions: contents: read to restrict workflow permissions by default
  • Pins GitHub Actions to specific commit hashes to prevent supply chain attacks
  • Maintains clear version comments for traceability

PR Title Compliance:
The title follows Conventional Commits format with the ci: prefix as required.

The changes are well-implemented and follow security best practices for GitHub Actions workflows. This hardening will help protect the release process from potential supply chain attacks.

You can now have the agent implement changes and create commits directly on your pull request's source branch. Simply comment with /q followed by your request in natural language to ask the agent to make changes.

@Pr0methean Pr0methean added this pull request to the merge queue Jan 26, 2026
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks Jan 26, 2026
@Pr0methean Pr0methean changed the title ci: Pin actions in release-plz workflow to commit hashes, and add default permissions for any future new jobs chore: release v7.3.0 Jan 26, 2026
@Pr0methean Pr0methean force-pushed the release-plz-pin-actions branch from b663efd to 6812066 Compare January 26, 2026 02:56
@Pr0methean
Copy link
Member Author

Pr0methean commented Jan 26, 2026
edited
Loading

This PR originally had the title and contents of what's now #565. release-plz seems to have chosen it to overwrite with the release PR because the source branch name happened to start with release-plz and be in the same repo. This will be merged once all other PRs tagged with the 7.3.0 milestone, including #565, are merged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@amazon-q-developer amazon-q-developer[bot] amazon-q-developer[bot] left review comments

Assignees

No one assigned

Labels

release

Projects

None yet

Milestone

7.3.0

Development

Successfully merging this pull request may close these issues.

2 participants

@Pr0methean