From f8224c1c06a50b56462639cfe156ab5c5edfa7a8 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 5 Sep 2023 10:54:59 +0000
Subject: [PATCH 1/2] chore(deps): bump actions/checkout from 3 to 4

Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/build.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index a14de0b..1d64b98 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -13,7 +13,7 @@ jobs:
       with:
         go-version: ${{ matrix.go-version }}
     - name: Checkout code
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
     - name: Format Unix
       if: runner.os == 'Linux'
       run: test -z $(go fmt ./...)
@@ -31,7 +31,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Checkout code
-      uses: actions/checkout@v3
+      uses: actions/checkout@v4
     - uses: dominikh/staticcheck-action@v1.3.0
       with:
         version: "2022.1"
\ No newline at end of file

From e009e35269ddf61b9e1471abb33ae873e6c37349 Mon Sep 17 00:00:00 2001
From: Aditya Sirish <aditya@saky.in>
Date: Wed, 6 Sep 2023 09:42:25 -0400
Subject: [PATCH 2/2] Pin actions by hash

Signed-off-by: Aditya Sirish <aditya@saky.in>
---
 .github/workflows/build.yml | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 1d64b98..2af6198 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -9,11 +9,11 @@ jobs:
     runs-on: ${{ matrix.os }}
     steps:
     - name: Install Go
-      uses: actions/setup-go@v4
+      uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe
       with:
         go-version: ${{ matrix.go-version }}
     - name: Checkout code
-      uses: actions/checkout@v4
+      uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
     - name: Format Unix
       if: runner.os == 'Linux'
       run: test -z $(go fmt ./...)
@@ -31,7 +31,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
     - name: Checkout code
-      uses: actions/checkout@v4
-    - uses: dominikh/staticcheck-action@v1.3.0
+      uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac
+    - uses: dominikh/staticcheck-action@ba605356b4b29a60e87ab9404b712f3461e566dc
       with:
-        version: "2022.1"
\ No newline at end of file
+        version: "2022.1"