diff --git a/.github/workflows/actionlint.yml b/.github/workflows/actionlint.yml index 0da95c8..836d99b 100644 --- a/.github/workflows/actionlint.yml +++ b/.github/workflows/actionlint.yml @@ -10,7 +10,7 @@ jobs: name: Lint GitHub workflows runs-on: ubuntu-latest steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 - name: Check workflow files uses: docker://index.docker.io/rhysd/actionlint@sha256:6f03470d0152251d7f07f7c4dc019dbe7024c72cd952f839544c7798843efa8f # 1.7.11 with: diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 9ad2e40..9a17255 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -31,7 +31,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: submodules: true diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 101461b..7ecd66c 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -75,7 +75,7 @@ jobs: ;; esac - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: submodules: recursive ssh-key: ${{ secrets.SSH_PRIVATE_KEY }} @@ -103,7 +103,7 @@ jobs: git config --global url.git@github.com:.insteadOf https://github.com/ # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 + uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 with: languages: ${{ matrix.language }} build-mode: ${{ inputs.build-mode }} @@ -125,7 +125,7 @@ jobs: run: | eval "${BUILD_CMD}" - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 + uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 with: output: codeql-results category: "/language:${{ matrix.language }}" diff --git a/.github/workflows/docker-buildx-push.yml b/.github/workflows/docker-buildx-push.yml index 3f3020e..f45774f 100644 --- a/.github/workflows/docker-buildx-push.yml +++ b/.github/workflows/docker-buildx-push.yml @@ -38,7 +38,7 @@ jobs: contents: read steps: - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 - name: Setup Go uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0 with: diff --git a/.github/workflows/goBuild.yml b/.github/workflows/goBuild.yml index b2ae965..520b14d 100644 --- a/.github/workflows/goBuild.yml +++ b/.github/workflows/goBuild.yml @@ -83,7 +83,7 @@ jobs: ;; esac - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: submodules: true ssh-key: ${{ secrets.SSH_PRIVATE_KEY }} diff --git a/.github/workflows/goLint.yml b/.github/workflows/goLint.yml index ab48467..a3f8cfd 100644 --- a/.github/workflows/goLint.yml +++ b/.github/workflows/goLint.yml @@ -70,7 +70,7 @@ jobs: esac - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: submodules: true ssh-key: ${{ secrets.SSH_PRIVATE_KEY }} diff --git a/.github/workflows/goTest.yml b/.github/workflows/goTest.yml index ac7a0d2..2704754 100644 --- a/.github/workflows/goTest.yml +++ b/.github/workflows/goTest.yml @@ -97,7 +97,7 @@ jobs: ;; esac - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: submodules: true ssh-key: ${{ secrets.SSH_PRIVATE_KEY }} @@ -146,7 +146,7 @@ jobs: with: test-results: gotestsum.json - name: Codecov - uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 + uses: codecov/codecov-action@fb8b3582c8e4def4969c97caa2f19720cb33a72f # v7.0.0 if: inputs.run-codecov && matrix.go == 'stable' with: token: ${{ secrets.CODECOV_TOKEN }} diff --git a/.github/workflows/goreleaser.yml b/.github/workflows/goreleaser.yml index 0fcc427..a652e24 100644 --- a/.github/workflows/goreleaser.yml +++ b/.github/workflows/goreleaser.yml @@ -83,7 +83,7 @@ jobs: # shellcheck disable=SC2086 sudo apt-get install ${OS_DEPS} - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 0 - run: git fetch --force --tags diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml index 0f97d8c..2bcc837 100644 --- a/.github/workflows/govulncheck.yml +++ b/.github/workflows/govulncheck.yml @@ -53,7 +53,7 @@ jobs: ;; esac - name: Checkout - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: submodules: true ssh-key: ${{ secrets.SSH_PRIVATE_KEY }} diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 1aec86c..ddaa179 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -17,7 +17,7 @@ jobs: name: zizmor runs-on: ubuntu-latest steps: - - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + - uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false - name: Run zizmor