diff --git a/.github/workflows/check.buildifier.yml b/.github/workflows/check.buildifier.yml index 1530424..514e83d 100644 --- a/.github/workflows/check.buildifier.yml +++ b/.github/workflows/check.buildifier.yml @@ -37,7 +37,7 @@ jobs: uses: step-security/harden-runner@63c24ba6bd7ba022e95695ff85de572c04a18142 # v2.7.0 with: egress-policy: audit - - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: buildifier continue-on-error: true run: bazel run --enable_bzlmod //.github/workflows:buildifier.check diff --git a/.github/workflows/check.codeql.yml b/.github/workflows/check.codeql.yml index be93586..2de284e 100644 --- a/.github/workflows/check.codeql.yml +++ b/.github/workflows/check.codeql.yml @@ -44,7 +44,7 @@ jobs: with: egress-policy: audit - name: Checkout repository - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: Initialize CodeQL uses: github/codeql-action/init@c7f9125735019aa87cfc361530512d50ea439c71 # v3.25.1 with: diff --git a/.github/workflows/check.lint-yaml.yml b/.github/workflows/check.lint-yaml.yml index dedac06..d258326 100644 --- a/.github/workflows/check.lint-yaml.yml +++ b/.github/workflows/check.lint-yaml.yml @@ -63,7 +63,7 @@ jobs: allowed-endpoints: > github.com:443 - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Lint: YAML" uses: karancode/yamllint-github-action@0a904064817924fc6fb449a32f67f25bfacc48ae # master with: @@ -90,7 +90,7 @@ jobs: allowed-endpoints: > github.com:443 - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Lint: YAML" uses: karancode/yamllint-github-action@0a904064817924fc6fb449a32f67f25bfacc48ae # master with: diff --git a/.github/workflows/check.scorecards.yml b/.github/workflows/check.scorecards.yml index f58339c..bd54ff6 100644 --- a/.github/workflows/check.scorecards.yml +++ b/.github/workflows/check.scorecards.yml @@ -24,7 +24,7 @@ jobs: with: egress-policy: audit - name: "Checkout code" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 with: persist-credentials: false - name: "Run analysis" diff --git a/.github/workflows/deploy.docs.yml b/.github/workflows/deploy.docs.yml index b39e174..dd871c3 100644 --- a/.github/workflows/deploy.docs.yml +++ b/.github/workflows/deploy.docs.yml @@ -33,7 +33,7 @@ jobs: with: egress-policy: audit - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Setup: Pages" uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5.0.0 - name: "Build: Jekyll" diff --git a/.github/workflows/module.build.yml b/.github/workflows/module.build.yml index 839a1f4..3d862f0 100644 --- a/.github/workflows/module.build.yml +++ b/.github/workflows/module.build.yml @@ -138,7 +138,7 @@ jobs: releases.bazel.build:443 remote.buildbuddy.io:443 - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Setup: msbuild" uses: ilammy/msvc-dev-cmd@0b201ec74fa43914dc39ae48a89fd1d8cb592756 # v1.13.0 if: ${{ contains(inputs.runner, 'windows') }} @@ -394,7 +394,7 @@ jobs: repo1.maven.org:443 maven.pkg.st:443 - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Setup: msbuild" uses: ilammy/msvc-dev-cmd@0b201ec74fa43914dc39ae48a89fd1d8cb592756 # v1.13.0 if: ${{ contains(inputs.runner, 'windows') }} diff --git a/.github/workflows/on.pr.yml b/.github/workflows/on.pr.yml index a26ecb7..e564348 100644 --- a/.github/workflows/on.pr.yml +++ b/.github/workflows/on.pr.yml @@ -36,7 +36,7 @@ jobs: with: egress-policy: audit - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Report: Dependency Graph" continue-on-error: true uses: advanced-security/maven-dependency-submission-action@bfd2106013da0957cdede0b6c39fb5ca25ae375e # v4.0.2 @@ -54,7 +54,7 @@ jobs: with: egress-policy: audit - name: "Checkout Repository" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Dependency Review" uses: actions/dependency-review-action@5bbc3ba658137598168acb2ab73b21c432dd411b # v4.2.5 with: diff --git a/.github/workflows/on.push.yml b/.github/workflows/on.push.yml index 859fea9..384dc22 100644 --- a/.github/workflows/on.push.yml +++ b/.github/workflows/on.push.yml @@ -34,7 +34,7 @@ jobs: with: egress-policy: audit - name: "Setup: Checkout" - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4.1.5 - name: "Report: Dependency Graph" continue-on-error: true uses: advanced-security/maven-dependency-submission-action@bfd2106013da0957cdede0b6c39fb5ca25ae375e # v4.0.2