From c85888d83a83451334f5419c7effee07523d0582 Mon Sep 17 00:00:00 2001
From: Maximilian Franzke <787658+mfranzke@users.noreply.github.com>
Date: Fri, 2 Jun 2023 16:31:40 +0200
Subject: [PATCH 1/2] refactor: preventing the need for some dependencies
 updates approvals

As we use this dependency only within our GitHub Action but not within any JavaScript, it's easy not to pin it to a minor or even patch version, but only major.
---
 .github/workflows/00-scan-secrets.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/00-scan-secrets.yml b/.github/workflows/00-scan-secrets.yml
index fcad0e54b1..561547f10e 100644
--- a/.github/workflows/00-scan-secrets.yml
+++ b/.github/workflows/00-scan-secrets.yml
@@ -17,7 +17,7 @@ jobs:
         id: extract_branch
 
       - name: 🐷 TruffleHog OSS
-        uses: trufflesecurity/trufflehog@v3.39.0
+        uses: trufflesecurity/trufflehog@v3
         with:
           path: ./
           base: ${{ steps.extract_branch.outputs.branch-name }}

From e2da957ba474163c33f975f328f651147141a4cd Mon Sep 17 00:00:00 2001
From: Maximilian Franzke <787658+mfranzke@users.noreply.github.com>
Date: Fri, 2 Jun 2023 17:15:18 +0200
Subject: [PATCH 2/2] fix: this approach doesn't work

---
 .github/workflows/00-scan-secrets.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/00-scan-secrets.yml b/.github/workflows/00-scan-secrets.yml
index 561547f10e..b134d8a479 100644
--- a/.github/workflows/00-scan-secrets.yml
+++ b/.github/workflows/00-scan-secrets.yml
@@ -17,7 +17,7 @@ jobs:
         id: extract_branch
 
       - name: 🐷 TruffleHog OSS
-        uses: trufflesecurity/trufflehog@v3
+        uses: trufflesecurity/trufflehog@main
         with:
           path: ./
           base: ${{ steps.extract_branch.outputs.branch-name }}