diff --git a/.github/workflows/fossa.yml b/.github/workflows/fossa.yml index a568518..86f31f7 100644 --- a/.github/workflows/fossa.yml +++ b/.github/workflows/fossa.yml @@ -15,7 +15,7 @@ jobs: timeout-minutes: 30 steps: - name: Checkout - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 # The FOSSA token is shared between all repos in Rancher's GH org. It can be # used directly and there is no need to request specific access to EIO. diff --git a/.github/workflows/head-build.yml b/.github/workflows/head-build.yml index d7e445f..e93f51d 100644 --- a/.github/workflows/head-build.yml +++ b/.github/workflows/head-build.yml @@ -22,7 +22,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out the repository to the runner - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - name: Set Branch Tag and Other Variables id: set-vars run: bash ./.github/scripts/branch-tags.sh >> $GITHUB_OUTPUT @@ -44,7 +44,7 @@ jobs: - prebuild-env steps: - name: Check out repository code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 - name: Load Secrets from Vault uses: rancher-eio/read-vault-secrets@main diff --git a/.github/workflows/port-pr.yaml b/.github/workflows/port-pr.yaml index cde4480..96ce6fa 100644 --- a/.github/workflows/port-pr.yaml +++ b/.github/workflows/port-pr.yaml @@ -81,7 +81,7 @@ jobs: fi - name: Checkout if: ${{ env.is_member == 'true' && env.target_branch_exists == 'true' }} - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 with: ref: ${{ env.target_branch }} fetch-depth: '0' diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index c89582c..6389450 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -28,7 +28,7 @@ jobs: secret/data/github/repo/${{ github.repository }}/rancher-prime-stg-registry/credentials username | PRIME_STG_REGISTRY_USERNAME ; secret/data/github/repo/${{ github.repository }}/rancher-prime-stg-registry/credentials password | PRIME_STG_REGISTRY_PASSWORD ; - name : Checkout repository - uses : actions/checkout@v6 + uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Check SemVer Characteristics id: semver_check diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 4dde8d9..7108bbf 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - run: make validate @@ -26,10 +26,10 @@ jobs: steps: - name: Checkout code - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5 + uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - name: Setup QEMU - uses: docker/setup-qemu-action@29109295f81e9208d7d86ff1c6c12d2833863392 # v3 + uses: docker/setup-qemu-action@c7c53464625b32c7a7e944ae62b3e17d2b600130 # v3 - name: Setup Docker Buildx - uses: docker/setup-buildx-action@e468171a9de216ec08956ac3ada2f0791b6bd435 # v3 + uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3 - run: make test