Update lint.yml to reference in-house GH action

courtneypacheco · courtneypacheco · commit 74a58111517b · 2025-03-12T08:40:32.000-04:00
Signed-off-by: Courtney Pacheco &lt;6019922+courtneypacheco@users.noreply.github.com&gt;
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
@@ -116,16 +116,19 @@ jobs:
   security-lint:
     runs-on: ubuntu-latest
     steps:
-      - name: "Checkout"
+      - name: Checkout "security-lint" in-house CI action
         uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
-          # https://github.com/actions/checkout/issues/249
-          fetch-depth: 0
+          repository: instructlab/ci-actions
+          path: ci-actions  # clone the "ci-actions" repo to a local directory called "ci-actions", instead of overwriting the current dir contents
+          ref: add-security-lint  # temporary branch with my changes
+          sparse-checkout: |
+            actions/add-security-lint
 
       # In-house method to detect and identfy exposed secrets in Git workflow files that
       # auto-trigger in pull requests
       - name: Detect exposed GitHub secrets
-        uses: ./.github/actions/detect-exposed-secrets
+        uses: ./ci-actions/actions/detect-exposed-workflow-secrets
 
   lint-workflow-complete:
     permissions:
