diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 31fd0887..dd5574e3 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -35,7 +35,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v2 + uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v2 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index d3d2d17a..864be4d1 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -36,6 +36,6 @@ jobs: egress-policy: audit # TODO: change to 'egress-policy: block' after couple of runs - name: 'Checkout Repository' - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c + uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f - name: 'Dependency Review' uses: actions/dependency-review-action@c090f4e553673e6e505ea70d6a95362ee12adb94 diff --git a/.github/workflows/docker-image.yml b/.github/workflows/docker-image.yml index 9168af94..6165e0c8 100644 --- a/.github/workflows/docker-image.yml +++ b/.github/workflows/docker-image.yml @@ -13,6 +13,6 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c + - uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f - name: Build the Docker image run: docker build . --file Dockerfile diff --git a/.github/workflows/golangci.yml b/.github/workflows/golangci.yml index 2c267d05..6b7f5688 100644 --- a/.github/workflows/golangci.yml +++ b/.github/workflows/golangci.yml @@ -15,7 +15,7 @@ jobs: matrix: os: [ ubuntu-latest ] steps: - - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c #v2.4.0 + - uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f #v2.4.0 - uses: actions/setup-go@6edd4406fa81c3da01a34fa6f6343087c207a568 #v2.1.5 with: go-version: '1.18' diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index e8e1db5a..25de12f8 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -16,7 +16,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c # v3.1.0 + uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f # v3.1.0 with: persist-credentials: false diff --git a/.github/workflows/tests.yaml b/.github/workflows/tests.yaml index 35df369e..839c553f 100644 --- a/.github/workflows/tests.yaml +++ b/.github/workflows/tests.yaml @@ -17,7 +17,7 @@ jobs: permissions: id-token: write # Needed to pick up on signing with a GitHub workflow identity. steps: - - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c #v2.4.0 + - uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f #v2.4.0 # https://github.com/mvdan/github-actions-golang#how-do-i-set-up-caching-between-builds - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 #v2.1.7 with: @@ -53,7 +53,7 @@ jobs: matrix: os: [ ubuntu-latest ] steps: - - uses: actions/checkout@ac593985615ec2ede58e132d2e21d2b1cbd6127c #v2.4.0 + - uses: actions/checkout@24cb9080177205b6e8c946b17badbe402adc938f #v2.4.0 # https://github.com/mvdan/github-actions-golang#how-do-i-set-up-caching-between-builds - uses: actions/cache@88522ab9f39a2ea568f7027eddc7d8d8bc9d59c8 #v2.1.7 with: