From 086439de434d8ec6d7c939a9e93f3a869d27f2a6 Mon Sep 17 00:00:00 2001 From: Ashley Scopes <73482956+ascopes@users.noreply.github.com> Date: Sat, 4 Feb 2023 11:38:40 +0000 Subject: [PATCH] Closes #317: freeze actions versions --- .github/workflows/build.yml | 36 ++++++++++++++++++------------------ .github/workflows/codeql.yml | 5 ++++- .github/workflows/deploy.yml | 4 ++-- 3 files changed, 24 insertions(+), 21 deletions(-) diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 73aea33cd..f2f644050 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -42,12 +42,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: fetch-depth: 2 - name: Initialize JDK - uses: actions/setup-java@v3 + uses: actions/setup-java@v3.9.0 with: cache: maven check-latest: true @@ -126,7 +126,7 @@ jobs: **/target/site/jacoco/int/jacoco*.xml - name: Stash reports tarball - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@v3.1.2 if: always() with: name: reports-${{ matrix.java-version }}-${{ matrix.os-name }} @@ -141,12 +141,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: fetch-depth: 2 - name: Initialize Java - uses: actions/setup-java@v3 + uses: actions/setup-java@v3.9.0 with: distribution: 'zulu' java-version: 17 @@ -173,7 +173,7 @@ jobs: XZ_OPT=-9 tar -Jcvf reports-mutation-tests.tar.xz **/target/pit-reports/pit-reports/** - name: Stash reports tarball - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@v3.1.2 if: always() with: name: reports-mutation-tests @@ -195,13 +195,13 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: # Needed to keep actions working correctly. fetch-depth: 2 - name: Download stashed tarballs - uses: actions/download-artifact@v3 + uses: actions/download-artifact@v3.0.2 with: path: 'artifacts/reports-*.tar.xz' @@ -213,7 +213,7 @@ jobs: - name: Publish test results continue-on-error: true - uses: EnricoMi/publish-unit-test-result-action@v2 + uses: EnricoMi/publish-unit-test-result-action@v2.3.0 if: always() with: action_fail: false @@ -257,12 +257,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: fetch-depth: 2 - name: Initialize Java - uses: actions/setup-java@v3 + uses: actions/setup-java@v3.9.0 with: distribution: 'zulu' java-version: 17 @@ -285,12 +285,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: fetch-depth: 2 - name: Initialize Java - uses: actions/setup-java@v3 + uses: actions/setup-java@v3.9.0 with: distribution: 'zulu' java-version: 17 @@ -312,7 +312,7 @@ jobs: verify - name: Archive Dependency Scan reports - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@v3.1.2 if: always() with: name: dependency-scan-report @@ -325,12 +325,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: fetch-depth: 2 - name: Initialize Java - uses: actions/setup-java@v3 + uses: actions/setup-java@v3.9.0 with: distribution: 'zulu' # Must use >= JDK 17 for JavaDocs to generate correctly. @@ -366,10 +366,10 @@ jobs: steps: - name: Deploy JavaDocs build artifact to GitHub Pages id: javadocs - uses: actions/deploy-pages@v1 + uses: actions/deploy-pages@v1.2.4 - name: Delete temporary artifacts - uses: geekyeggo/delete-artifact@v2 + uses: geekyeggo/delete-artifact@v2.0.0 with: name: github-pages failOnError: false diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index db24b146d..928361943 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -33,18 +33,21 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL + # Do not freeze. Enables automatic updates to how CodeQL scans uses: github/codeql-action/init@v2 with: languages: ${{ matrix.language }} - name: Autobuild + # Do not freeze. Enables automatic updates to how CodeQL scans uses: github/codeql-action/autobuild@v2 - name: Perform CodeQL Analysis + # Do not freeze. Enables automatic updates to how CodeQL scans uses: github/codeql-action/analyze@v2 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/deploy.yml b/.github/workflows/deploy.yml index f7a4a63e8..ac6d1f087 100644 --- a/.github/workflows/deploy.yml +++ b/.github/workflows/deploy.yml @@ -28,12 +28,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@v3 + uses: actions/checkout@v3.3.0 with: fetch-depth: 2 - name: Initialize Java environment - uses: actions/setup-java@v3 + uses: actions/setup-java@v3.9.0 with: distribution: zulu # Must use >= JDK 17 for Javadocs to generate correctly.