From 3c551d81153aeb0875ca81b476d0f61cbbd1886c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Wed, 6 Sep 2023 22:19:04 +0000 Subject: [PATCH] chore(deps): pin dependencies --- .github/workflows/build.yaml | 6 +++--- .github/workflows/publish.yaml | 4 ++-- .github/workflows/renovate-approve.yaml | 2 +- .github/workflows/renovate.yaml | 2 +- .github/workflows/scan.yaml | 4 ++-- 5 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml index a1c00789..2d2ae020 100644 --- a/.github/workflows/build.yaml +++ b/.github/workflows/build.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Get name id: name @@ -26,12 +26,12 @@ jobs: run: syft ${{ steps.rockcraft.outputs.rock }} -o spdx-json=${{ steps.name.outputs.name }}.sbom.json - name: Upload SBOM - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3 with: name: ${{ steps.name.outputs.name }}-sbom path: "${{ steps.name.outputs.name }}.sbom.json" - - uses: actions/upload-artifact@v3 + - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3 with: name: rock path: ${{ steps.rockcraft.outputs.rock }} diff --git a/.github/workflows/publish.yaml b/.github/workflows/publish.yaml index 967e0d1a..b7137028 100644 --- a/.github/workflows/publish.yaml +++ b/.github/workflows/publish.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Log in to the Container registry uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc @@ -26,7 +26,7 @@ jobs: run: | sudo snap install yq - - uses: actions/download-artifact@v3 + - uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3 with: name: rock diff --git a/.github/workflows/renovate-approve.yaml b/.github/workflows/renovate-approve.yaml index c70e7910..4d4758f2 100644 --- a/.github/workflows/renovate-approve.yaml +++ b/.github/workflows/renovate-approve.yaml @@ -10,7 +10,7 @@ jobs: autoapprove: runs-on: ubuntu-22.04 steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Approve PR run: | gh pr review --approve || true diff --git a/.github/workflows/renovate.yaml b/.github/workflows/renovate.yaml index cf772756..321fbe1b 100644 --- a/.github/workflows/renovate.yaml +++ b/.github/workflows/renovate.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Self-hosted Renovate uses: renovatebot/github-action@23a02fe7be9e93f857a953cc8162e57d2c8401ef # v39.0.1 diff --git a/.github/workflows/scan.yaml b/.github/workflows/scan.yaml index 0396fc1c..dc642d7d 100644 --- a/.github/workflows/scan.yaml +++ b/.github/workflows/scan.yaml @@ -9,7 +9,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Get name and version id: image_info @@ -25,6 +25,6 @@ jobs: output: 'trivy-results.sarif' - name: Upload scan results to GitHub - uses: github/codeql-action/upload-sarif@v2 + uses: github/codeql-action/upload-sarif@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2 with: sarif_file: 'trivy-results.sarif'