From 28ccf1b4c5e22cb2ca6398dfd67d49de61ebf413 Mon Sep 17 00:00:00 2001 From: Marc Wickenden Date: Sat, 7 Oct 2023 10:35:25 +0100 Subject: [PATCH] Tweak HubSpot regex to match optional regional hosts, plus upgrade sigstore --- .github/workflows/pypi.yaml | 3 ++- sricheck/__init__.py | 2 +- sricheck/sricheck.py | 2 +- 3 files changed, 4 insertions(+), 3 deletions(-) diff --git a/.github/workflows/pypi.yaml b/.github/workflows/pypi.yaml index 26bea2d..c9dad68 100644 --- a/.github/workflows/pypi.yaml +++ b/.github/workflows/pypi.yaml @@ -5,6 +5,7 @@ on: push jobs: tests: uses: ./.github/workflows/tests.yaml + build: name: Build distribution needs: [tests] @@ -70,7 +71,7 @@ jobs: name: python-package-distributions path: dist/ - name: Sign the dists with Sigstore - uses: sigstore/gh-action-sigstore-python@v1.2.3 + uses: sigstore/gh-action-sigstore-python@v2.1.0 with: inputs: >- ./dist/*.tar.gz diff --git a/sricheck/__init__.py b/sricheck/__init__.py index 83b020e..880e7ae 100644 --- a/sricheck/__init__.py +++ b/sricheck/__init__.py @@ -1 +1 @@ -__version__ = "1.7.1" \ No newline at end of file +__version__ = "1.7.2" \ No newline at end of file diff --git a/sricheck/sricheck.py b/sricheck/sricheck.py index 432f39c..12c2832 100755 --- a/sricheck/sricheck.py +++ b/sricheck/sricheck.py @@ -43,7 +43,7 @@ def __init__(self, url): self.allowlisted_hosts = [ "fonts\.googleapis\.com", # does not use versioning so can't realistically use SRI "fonts\.gstatic\.com", # does not use versioning so can't realistically use SRI - "js\.hs-scripts\.com", # does not use versioning so can't realistically use SRI + "js-?[a-z0-9]*\.hs-scripts\.com", # does not use versioning so can't realistically use SRI "www\.googletagmanager\.com", # does not use versioning so can't realistically use SRI ]