From eb085adfe2779a1c52bfe1b2d0945b6c4241f54e Mon Sep 17 00:00:00 2001 From: Ismo Vuorinen Date: Wed, 19 Mar 2025 17:26:36 +0200 Subject: [PATCH] chore(ci): update GitHub Actions workflow dependencies to latest versions (#78) --- .github/workflows/new-release.yml | 4 ++-- ansible-lint-fix/action.yml | 2 +- biome-check/action.yml | 4 ++-- biome-fix/action.yml | 4 ++-- common-cache/action.yml | 2 +- compress-images/action.yml | 4 ++-- csharp-build/action.yml | 4 ++-- csharp-lint-check/action.yml | 4 ++-- csharp-publish/action.yml | 2 +- docker-build/action.yml | 4 ++-- docker-publish-gh/action.yml | 8 ++++---- docker-publish-hub/action.yml | 8 ++++---- eslint-check/action.yml | 2 +- eslint-fix/action.yml | 4 ++-- go-build/action.yml | 2 +- go-lint/action.yml | 6 +++--- node-setup/action.yml | 4 ++-- php-composer/action.yml | 2 +- php-laravel-phpunit/action.yml | 4 ++-- pr-lint/action.yml | 10 +++++----- pre-commit/action.yml | 2 +- prettier-check/action.yml | 4 ++-- prettier-fix/action.yml | 4 ++-- python-lint-fix/action.yml | 4 ++-- release-monthly/action.yml | 2 +- terraform-lint-fix/action.yml | 4 ++-- 26 files changed, 52 insertions(+), 52 deletions(-) diff --git a/.github/workflows/new-release.yml b/.github/workflows/new-release.yml index f842456..b2d0626 100644 --- a/.github/workflows/new-release.yml +++ b/.github/workflows/new-release.yml @@ -20,10 +20,10 @@ jobs: version: ${{ steps.daily-version.outputs.version }} steps: - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Create tag if necessary - uses: fregante/daily-version-action@fb1a60b7c4daf1410cd755e360ebec3901e58588 # v2 + uses: fregante/daily-version-action@fb1a60b7c4daf1410cd755e360ebec3901e58588 # v2.1.3 id: daily-version - name: Create changelog text diff --git a/ansible-lint-fix/action.yml b/ansible-lint-fix/action.yml index abcd668..e5e5ef5 100644 --- a/ansible-lint-fix/action.yml +++ b/ansible-lint-fix/action.yml @@ -47,6 +47,6 @@ runs: fi - name: Upload SARIF Report - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: ansible-lint.sarif diff --git a/biome-check/action.yml b/biome-check/action.yml index 5fafa95..ef5b224 100644 --- a/biome-check/action.yml +++ b/biome-check/action.yml @@ -12,7 +12,7 @@ runs: using: composite steps: - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Set Git Config uses: ivuorinen/actions/set-git-config@main @@ -31,6 +31,6 @@ runs: biome check . --json > biome-report.json - name: Upload Biome Results - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: biome-report.json diff --git a/biome-fix/action.yml b/biome-fix/action.yml index e0de51e..a235f86 100644 --- a/biome-fix/action.yml +++ b/biome-fix/action.yml @@ -12,7 +12,7 @@ runs: using: composite steps: - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Set Git Config uses: ivuorinen/actions/set-git-config@main @@ -32,7 +32,7 @@ runs: - name: Push Fixes if: success() - uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5 + uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5.1.0 with: commit_message: 'style: autofix Biome violations' add_options: '-u' diff --git a/common-cache/action.yml b/common-cache/action.yml index 2861e8e..851045b 100644 --- a/common-cache/action.yml +++ b/common-cache/action.yml @@ -95,7 +95,7 @@ runs: echo "cache-paths=${cache_paths}" >> $GITHUB_OUTPUT - id: cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ${{ steps.prepare.outputs.cache-paths }} key: ${{ steps.prepare.outputs.cache-key }} diff --git a/compress-images/action.yml b/compress-images/action.yml index 049cf5a..f1d491d 100644 --- a/compress-images/action.yml +++ b/compress-images/action.yml @@ -18,7 +18,7 @@ runs: uses: ivuorinen/actions/set-git-config@main - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Compress Images id: calibre @@ -29,7 +29,7 @@ runs: - name: Create New Pull Request If Needed if: steps.calibre.outputs.markdown != '' - uses: peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f # v7 + uses: peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f # v7.0.6 with: title: Compressed Images Nightly branch-suffix: timestamp diff --git a/csharp-build/action.yml b/csharp-build/action.yml index a7e8d5f..14300ab 100644 --- a/csharp-build/action.yml +++ b/csharp-build/action.yml @@ -22,7 +22,7 @@ runs: default-version: '7.0' - name: Setup .NET SDK - uses: actions/setup-dotnet@3951f0dfe7a07e2313ec93c75700083e2005cbab # v4 + uses: actions/setup-dotnet@3951f0dfe7a07e2313ec93c75700083e2005cbab # v4.3.0 with: dotnet-version: '${{ steps.detect-dotnet-version.outputs.dotnet-version }}' @@ -40,7 +40,7 @@ runs: dotnet test --configuration Release --no-build --collect:"XPlat Code Coverage" --logger "trx;LogFileName=test-results.trx" - name: Upload Test Results - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 with: name: test-results path: | diff --git a/csharp-lint-check/action.yml b/csharp-lint-check/action.yml index b9fee06..85241fa 100644 --- a/csharp-lint-check/action.yml +++ b/csharp-lint-check/action.yml @@ -22,7 +22,7 @@ runs: default-version: '7.0' - name: Setup .NET SDK - uses: actions/setup-dotnet@3951f0dfe7a07e2313ec93c75700083e2005cbab # v4 + uses: actions/setup-dotnet@3951f0dfe7a07e2313ec93c75700083e2005cbab # v4.3.0 with: dotnet-version: '${{ steps.detect-dotnet-version.outputs.dotnet-version }}' @@ -40,6 +40,6 @@ runs: fi - name: Upload SARIF Report - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: dotnet-format.sarif diff --git a/csharp-publish/action.yml b/csharp-publish/action.yml index 573922e..1ed7475 100644 --- a/csharp-publish/action.yml +++ b/csharp-publish/action.yml @@ -26,7 +26,7 @@ runs: default-version: '7.0' - name: Setup .NET SDK - uses: actions/setup-dotnet@3951f0dfe7a07e2313ec93c75700083e2005cbab # v4 + uses: actions/setup-dotnet@3951f0dfe7a07e2313ec93c75700083e2005cbab # v4.3.0 with: dotnet-version: '${{ steps.detect-dotnet-version.outputs.dotnet-version }}' diff --git a/docker-build/action.yml b/docker-build/action.yml index b1d2f27..4dfad49 100644 --- a/docker-build/action.yml +++ b/docker-build/action.yml @@ -92,13 +92,13 @@ runs: fi - name: Set up QEMU - uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3 + uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3.4.0 with: platforms: ${{ inputs.architectures }} - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3 + uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3.9.0 with: version: latest platforms: ${{ inputs.architectures }} diff --git a/docker-publish-gh/action.yml b/docker-publish-gh/action.yml index 760e6af..0dc22ee 100644 --- a/docker-publish-gh/action.yml +++ b/docker-publish-gh/action.yml @@ -97,12 +97,12 @@ runs: done - name: Set up QEMU - uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3 + uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3.4.0 with: platforms: ${{ inputs.platforms }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3 + uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3.9.0 with: platforms: ${{ inputs.platforms }} @@ -133,7 +133,7 @@ runs: echo "tags=${processed_tags}" >> $GITHUB_OUTPUT - name: Log in to GitHub Container Registry - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3 + uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 with: registry: ${{ inputs.registry }} username: ${{ github.actor }} @@ -141,7 +141,7 @@ runs: - name: Set up Cosign if: inputs.provenance == 'true' - uses: sigstore/cosign-installer@c56c2d3e59e4281cc41dea2217323ba5694b171e # v3 + uses: sigstore/cosign-installer@c56c2d3e59e4281cc41dea2217323ba5694b171e # v3.8.0 - name: Publish Image id: publish diff --git a/docker-publish-hub/action.yml b/docker-publish-hub/action.yml index 6c52d74..4165ef8 100644 --- a/docker-publish-hub/action.yml +++ b/docker-publish-hub/action.yml @@ -105,12 +105,12 @@ runs: fi - name: Set up QEMU - uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3 + uses: docker/setup-qemu-action@4574d27a4764455b42196d70a065bc6853246a25 # v3.4.0 with: platforms: ${{ inputs.platforms }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3 + uses: docker/setup-buildx-action@f7ce87c1d6bead3e36075b2ce75da1f6cc28aaca # v3.9.0 with: platforms: ${{ inputs.platforms }} @@ -144,14 +144,14 @@ runs: echo "repo-url=https://hub.docker.com/r/${full_name}" >> $GITHUB_OUTPUT - name: Log in to Docker Hub - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3 + uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 with: username: ${{ inputs.username }} password: ${{ inputs.password }} - name: Set up Cosign if: inputs.provenance == 'true' - uses: sigstore/cosign-installer@c56c2d3e59e4281cc41dea2217323ba5694b171e # v3 + uses: sigstore/cosign-installer@c56c2d3e59e4281cc41dea2217323ba5694b171e # v3.8.0 - name: Update Docker Hub Description if: inputs.repository-description != '' || inputs.readme-file != '' diff --git a/eslint-check/action.yml b/eslint-check/action.yml index 21be44e..63d2aa1 100644 --- a/eslint-check/action.yml +++ b/eslint-check/action.yml @@ -239,7 +239,7 @@ runs: - name: Upload ESLint Results if: always() && inputs.report-format == 'sarif' - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: ${{ inputs.working-directory }}/reports/eslint.sarif category: eslint diff --git a/eslint-fix/action.yml b/eslint-fix/action.yml index d252c44..5eb34e5 100644 --- a/eslint-fix/action.yml +++ b/eslint-fix/action.yml @@ -12,7 +12,7 @@ runs: using: composite steps: - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Set Git Config uses: ivuorinen/actions/set-git-config@main @@ -32,7 +32,7 @@ runs: - name: Push Fixes if: always() - uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5 + uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5.1.0 with: commit_message: 'style: autofix ESLint violations' add_options: '-u' diff --git a/go-build/action.yml b/go-build/action.yml index 1717102..b2770e0 100644 --- a/go-build/action.yml +++ b/go-build/action.yml @@ -24,7 +24,7 @@ runs: uses: ivuorinen/actions/go-version-detect@main - name: Setup Go - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0 with: go-version: '${{ steps.detect-go-version.outputs.go-version }}' diff --git a/go-lint/action.yml b/go-lint/action.yml index 8132338..e28af1b 100644 --- a/go-lint/action.yml +++ b/go-lint/action.yml @@ -106,7 +106,7 @@ runs: done - name: Setup Go - uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5 + uses: actions/setup-go@f111f3307d8850f501ac008e886eec1fd1932a34 # v5.3.0 with: go-version: ${{ inputs.go-version }} cache: true @@ -114,7 +114,7 @@ runs: - name: Set up Cache id: cache if: inputs.cache == 'true' - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: | ~/.cache/golangci-lint @@ -266,7 +266,7 @@ runs: - name: Upload Lint Results if: always() && inputs.report-format == 'sarif' - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: ${{ inputs.working-directory }}/reports/golangci-lint.sarif category: golangci-lint diff --git a/node-setup/action.yml b/node-setup/action.yml index 9f3f3aa..6dc5db6 100644 --- a/node-setup/action.yml +++ b/node-setup/action.yml @@ -161,7 +161,7 @@ runs: - name: Setup Node.js id: setup - uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4 + uses: actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a # v4.2.0 with: node-version: ${{ steps.version.outputs.version }} registry-url: ${{ inputs.registry-url }} @@ -216,7 +216,7 @@ runs: - name: Setup Caching if: inputs.cache == 'true' id: deps-cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: | **/node_modules diff --git a/php-composer/action.yml b/php-composer/action.yml index 94aadc1..ea9b4b0 100644 --- a/php-composer/action.yml +++ b/php-composer/action.yml @@ -172,7 +172,7 @@ runs: - name: Cache Composer packages id: composer-cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: | vendor diff --git a/php-laravel-phpunit/action.yml b/php-laravel-phpunit/action.yml index b711ba7..ee611a2 100644 --- a/php-laravel-phpunit/action.yml +++ b/php-laravel-phpunit/action.yml @@ -50,11 +50,11 @@ runs: extensions: ${{ inputs.extensions }} coverage: ${{ inputs.coverage }} - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: 'Check file existence' id: check_files - uses: andstor/file-existence-action@076e0072799f4942c8bc574a82233e1e4d13e9d6 # v3 + uses: andstor/file-existence-action@076e0072799f4942c8bc574a82233e1e4d13e9d6 # v3.0.0 with: files: 'package.json, artisan' diff --git a/pr-lint/action.yml b/pr-lint/action.yml index 31c397f..6fd414b 100644 --- a/pr-lint/action.yml +++ b/pr-lint/action.yml @@ -14,7 +14,7 @@ runs: steps: # Git Checkout - name: Checkout Code - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: token: ${{ github.token }} @@ -30,7 +30,7 @@ runs: - name: MegaLinter # You can override MegaLinter flavor used to have faster performances # More info at https://megalinter.io/latest/flavors/ - uses: oxsecurity/megalinter@ec124f7998718d79379a3c5b39f5359952baf21d # v8 + uses: oxsecurity/megalinter@ec124f7998718d79379a3c5b39f5359952baf21d # v8.4.2 id: ml # All available variables are described in documentation @@ -79,7 +79,7 @@ runs: # Upload MegaLinter artifacts - name: Archive production artifacts if: success() || failure() - uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4 + uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0 with: name: MegaLinter reports include-hidden-files: 'true' @@ -120,7 +120,7 @@ runs: # Create pull request if applicable # (for now works only on PR from same repository, not from forks) - name: Create Pull Request with applied fixes - uses: peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f # v7 + uses: peter-evans/create-pull-request@67ccf781d68cd99b580ae25a5c18a1cc84ffff1f # v7.0.6 id: cpr if: env.APPLY_FIXES_IF_PR == 'true' with: @@ -144,7 +144,7 @@ runs: run: sudo chown -Rc $UID .git/ - name: Commit and push applied linter fixes - uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5 + uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5.1.0 if: env.APPLY_FIXES_IF_COMMIT == 'true' with: branch: >- diff --git a/pre-commit/action.yml b/pre-commit/action.yml index 17dce2d..e8d76b5 100644 --- a/pre-commit/action.yml +++ b/pre-commit/action.yml @@ -56,7 +56,7 @@ runs: - name: Push pre-commit fixes if: always() # Push changes even when pre-commit fails - uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5 + uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5.1.0 with: commit_message: 'style(pre-commit): autofix' add_options: -u diff --git a/prettier-check/action.yml b/prettier-check/action.yml index e350504..bac57fb 100644 --- a/prettier-check/action.yml +++ b/prettier-check/action.yml @@ -102,7 +102,7 @@ runs: - name: Set up Cache id: cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 if: inputs.cache == 'true' with: path: | @@ -305,7 +305,7 @@ runs: - name: Upload Prettier Results if: always() && inputs.report-format == 'sarif' - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: ${{ inputs.working-directory }}/reports/prettier.sarif category: prettier diff --git a/prettier-fix/action.yml b/prettier-fix/action.yml index 14ce02b..a2c7176 100644 --- a/prettier-fix/action.yml +++ b/prettier-fix/action.yml @@ -12,7 +12,7 @@ runs: using: 'composite' steps: - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Set Git Config uses: ivuorinen/actions/set-git-config@main @@ -32,7 +32,7 @@ runs: - name: Push Fixes if: always() - uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5 + uses: stefanzweifel/git-auto-commit-action@e348103e9026cc0eee72ae06630dbe30c8bf7a79 # v5.1.0 with: commit_message: 'style: autofix Prettier violations' add_options: '-u' diff --git a/python-lint-fix/action.yml b/python-lint-fix/action.yml index 780a10f..16d5cbf 100644 --- a/python-lint-fix/action.yml +++ b/python-lint-fix/action.yml @@ -49,7 +49,7 @@ runs: using: composite steps: - name: Setup Python - uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5 + uses: actions/setup-python@42375524e23c412d93fb67b49958b491fce71c38 # v5.4.0 with: python-version: ${{ inputs.python-version }} cache: 'pip' @@ -213,7 +213,7 @@ runs: - name: Upload SARIF Report if: steps.check-files.outputs.result == 'found' - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: ${{ inputs.working-directory }}/reports/flake8.sarif category: 'python-lint' diff --git a/release-monthly/action.yml b/release-monthly/action.yml index 81db193..8598e57 100644 --- a/release-monthly/action.yml +++ b/release-monthly/action.yml @@ -62,7 +62,7 @@ runs: fi - name: Checkout Repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 0 # Fetch all history for tag comparison diff --git a/terraform-lint-fix/action.yml b/terraform-lint-fix/action.yml index 0c32f10..256149b 100644 --- a/terraform-lint-fix/action.yml +++ b/terraform-lint-fix/action.yml @@ -82,7 +82,7 @@ runs: - name: Setup Terraform if: steps.check-files.outputs.found == 'true' - uses: hashicorp/setup-terraform@b9cd54a3c349d3f38e8881555d616ced269862dd # v3 + uses: hashicorp/setup-terraform@b9cd54a3c349d3f38e8881555d616ced269862dd # v3.1.2 with: terraform_version: ${{ inputs.terraform-version }} terraform_wrapper: false @@ -225,7 +225,7 @@ runs: - name: Upload SARIF Report if: steps.check-files.outputs.found == 'true' && inputs.format == 'sarif' - uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3 + uses: github/codeql-action/upload-sarif@9e8d0789d4a0fa9ceb6b1738f7e269594bdd67f0 # v3.28.9 with: sarif_file: ${{ inputs.working-directory }}/reports/tflint.sarif category: terraform-lint