diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index f62771c..68707ce 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -38,7 +38,7 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # pin@11bd71901bbe5b1630ceea73d27597364c9af683 - name: Initialize CodeQL - uses: github/codeql-action/init@45775bd8235c68ba998cffa5171334d58593da47 # pin@v3 + uses: github/codeql-action/init@28deaeda66b76a05916b6923827895f2b14ab387 # pin@v3 with: languages: ${{ matrix.language }} build-mode: ${{ matrix.build-mode }} @@ -54,6 +54,6 @@ jobs: exit 1 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@45775bd8235c68ba998cffa5171334d58593da47 # pin@v3 + uses: github/codeql-action/analyze@28deaeda66b76a05916b6923827895f2b14ab387 # pin@v3 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/megalinter.yml b/.github/workflows/megalinter.yml index 9bc0fb8..65f2546 100644 --- a/.github/workflows/megalinter.yml +++ b/.github/workflows/megalinter.yml @@ -78,7 +78,7 @@ jobs: # Run MegaLinter - name: MegaLinter id: ml - uses: oxsecurity/megalinter/flavors/security@146333030da68e2e58c6ff826633824fabe01eaf # pin@v8.5.0 + uses: oxsecurity/megalinter/flavors/security@04cf22b980c2e9c2121553417ed651c944afc8e1 # pin@v8.6.0 env: GITHUB_TOKEN: ${{ secrets.PAT || secrets.GITHUB_TOKEN || github.token }} @@ -195,7 +195,7 @@ jobs: && github.ref != 'refs/heads/main' && (github.event_name == 'push' || github.event.pull_request.head.repo.full_name == github.repository) - uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # pin@v5 + uses: stefanzweifel/git-auto-commit-action@b863ae1933cb653a53c021fe36dbb774e1fb9403 # pin@v5 with: branch: ${{ github.event.pull_request.head.ref || github.head_ref || github.ref }} commit_message: "[MegaLinter] Apply linter fixes" @@ -228,6 +228,6 @@ jobs: if: | steps.sarif_file_exists.outputs.files_exists == 'true' && github.event.repository.visibility == 'public' - uses: github/codeql-action/upload-sarif@45775bd8235c68ba998cffa5171334d58593da47 # pin@v3.28.15 + uses: github/codeql-action/upload-sarif@28deaeda66b76a05916b6923827895f2b14ab387 # pin@v3.28.16 with: sarif_file: "megalinter-reports/megalinter-report.sarif" diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index e4b0f19..0f79929 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -72,6 +72,6 @@ jobs: # Upload the results to GitHub's code scanning dashboard (optional). # Commenting out will disable upload of results to your repo's Code Scanning dashboard - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@45775bd8235c68ba998cffa5171334d58593da47 # pin@v3 + uses: github/codeql-action/upload-sarif@28deaeda66b76a05916b6923827895f2b14ab387 # pin@v3 with: sarif_file: results.sarif diff --git a/.github/workflows/semver.yml b/.github/workflows/semver.yml index f9aa070..524c1f9 100644 --- a/.github/workflows/semver.yml +++ b/.github/workflows/semver.yml @@ -43,7 +43,7 @@ jobs: - name: Create release id: create-release - uses: softprops/action-gh-release@c95fe1489396fe8a9eb87c0abf8aa5b2ef267fda # pin@v2.2.1 + uses: softprops/action-gh-release@da05d552573ad5aba039eaac05058a918a7bf631 # pin@v2.2.2 with: token: "${{ secrets.GITHUB_TOKEN }}" name: "v${{ steps.calculate-version.outputs.version-string }}"