codingworkflow · Mehdi-Bl · Mar 24, 2026 · Mar 24, 2026
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -31,12 +31,12 @@ jobs:
           persist-credentials: false
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@0d579ffd059c29b07949a3cce3983f0780820c98
+        uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc
         with:
           languages: ${{ matrix.language }}
           config-file: ./.github/codeql/codeql-config.yml
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@0d579ffd059c29b07949a3cce3983f0780820c98
+        uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc
         with:
           category: /language:${{ matrix.language }}
diff --git a/.github/workflows/poutine.yml b/.github/workflows/poutine.yml
@@ -38,7 +38,7 @@ jobs:
           mv results.cleaned.sarif results.sarif
 
       - name: Upload poutine SARIF
-        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98
+        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc
         with:
           sarif_file: results.sarif
           category: /tool:poutine

diff --git a/.github/workflows/qa-matrix.yml b/.github/workflows/qa-matrix.yml
@@ -374,7 +374,7 @@ jobs:
           path: dist/test-results/${{ matrix.os }}
 
       - name: Publish unit test results
-        uses: dorny/test-reporter@3d76b34a4535afbd0600d347b09a6ee5deb3ed7f
+        uses: dorny/test-reporter@a43b3a5f7366b97d083190328d2c652e1a8b6aa2
         with:
           name: Unit Tests (${{ matrix.os }})
           path: dist/test-results/${{ matrix.os }}/junit.xml

diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml
@@ -61,7 +61,7 @@ jobs:
         run: mkdir -p dist/security/sbom
 
       - name: Generate SPDX SBOM and submit dependency snapshot
-        uses: anchore/sbom-action@57aae528053a48a3f6235f2d9461b05fbcb7366d
+        uses: anchore/sbom-action@e22c389904149dbc22b58101806040fa8d37a610
         with:
           file: package-lock.json
           format: spdx-json

diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
@@ -41,7 +41,7 @@ jobs:
           retention-days: 14
 
       - name: Upload Scorecards SARIF
-        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98
+        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc
         with:
           sarif_file: scorecards.sarif
           category: /tool:ossf-scorecards
diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml
@@ -69,7 +69,7 @@ jobs:
 
       - name: Upload Semgrep SARIF
         if: always() && (github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository)
-        uses: github/codeql-action/upload-sarif@0d579ffd059c29b07949a3cce3983f0780820c98
+        uses: github/codeql-action/upload-sarif@38697555549f1db7851b81482ff19f1fa5c4fedc
         with:
           sarif_file: semgrep.sarif
           category: /tool:semgrep

diff --git a/.prettierignore b/.prettierignore
@@ -6,3 +6,4 @@ coverage
 .github
 .husky
 .claude
+.agent-runner
-Original file line number
+Diff line change
@@ Expand Up / @@ -6,3 +6,4 @@ coverage @@
     .github
     .husky
     .claude
+    .agent-runner