Skip to content

Bump actions/checkout from 4.1.0 to 4.1.1 #7039

Bump actions/checkout from 4.1.0 to 4.1.1

Bump actions/checkout from 4.1.0 to 4.1.1 #7039

# This workflow removes any assets created for manual QA testing
# from the GCP bucket once a pull request is closed.
name: Clean up PR assets
on:
pull_request:
types: [closed]
permissions:
contents: read
jobs:
remove-pr:
name: Cleanup storage
runs-on: ubuntu-latest
timeout-minutes: 5
if: >
github.event.pull_request.draft == false &&
github.event.pull_request.head.repo.fork == false &&
github.event.pull_request.user.login != 'dependabot[bot]'
steps:
- name: Harden Runner
uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09
with:
disable-file-monitoring: true
disable-sudo: true
egress-policy: block
allowed-endpoints: >
cloudresourcemanager.googleapis.com:443
dl.google.com:443
oauth2.googleapis.com:443
storage.googleapis.com:443
raw.githubusercontent.com:443
- name: Authenticate
uses: google-github-actions/auth@35b0e87d162680511bf346c299f71c9c5c379033
with:
credentials_json: ${{ secrets.GCP_SA_KEY }}
- name: Setup Cloud SDK
uses: google-github-actions/setup-gcloud@e30db14379863a8c79331b04a9969f4c1e225e0b
with:
project_id: ${{ secrets.GCP_PROJECT_ID }}
- name: Prune PR files
run: gsutil rm -rf gs://web-stories-wp-github-artifacts/refs/pull/${{ github.event.pull_request.number }}