diff --git a/.github/workflows/betterleaks.yml b/.github/workflows/betterleaks.yml index 1b6285d..a2291c8 100644 --- a/.github/workflows/betterleaks.yml +++ b/.github/workflows/betterleaks.yml @@ -52,7 +52,7 @@ jobs: if: env.CHECK_PERMISSIONS == '1' - id: checkout-repo name: Checkout repo - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 0 persist-credentials: false @@ -64,7 +64,7 @@ jobs: fail-on-leak: 'false' # Don't fail here; let code scanning handle it - id: upload-sarif name: Upload sarif - uses: github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 + uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 if: always() with: sarif_file: ${{ steps.detect-secrets.outputs.sarif-path }} diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index f9961f3..472e6c0 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -74,7 +74,7 @@ jobs: if: env.CHECK_PERMISSIONS == '1' - id: checkout-repo name: Checkout repo - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 2 persist-credentials: true # Need for next step. @@ -104,7 +104,7 @@ jobs: - id: init-codeql name: Initialize CodeQL if: env.ENABLED == '1' - uses: github/codeql-action/init@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5 + uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 with: languages: ${{ matrix.language }} build-mode: ${{ matrix.build-mode }} @@ -112,7 +112,7 @@ jobs: - id: setup-dotnet name: Set up .NET if: matrix.build-mode == 'manual' && env.ENABLED == '1' - uses: actions/setup-dotnet@c2fa09f4bde5ebb9d1777cf28262a3eb3db3ced7 # v5.2.0 + uses: actions/setup-dotnet@9a946fdbd5fb07b82b2f5a4466058b876ab72bb2 # v5.3.0 with: cache: true dotnet-version: 10.0.x @@ -133,7 +133,7 @@ jobs: - id: commit-changes name: Commit changes if: matrix.build-mode == 'manual' && env.ENABLED == '1' - uses: qoomon/actions--create-commit@0f4cc87a8ad11282dfed4639db11c6e4ac09b25b # v1.2.4 + uses: qoomon/actions--create-commit@7102b1a8b3cb8716dc70dbeb6d774c375d779d2f # v1.2.5 with: message: Committing changes to lock files [skip ci] allow-empty: false @@ -173,7 +173,7 @@ jobs: - id: codeql-analysis name: Perform CodeQL Analysis if: env.ENABLED == '1' - uses: github/codeql-action/analyze@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5 + uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 with: # yamllint disable-line category: "/language:${{matrix.language}}" diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 620ef98..087cbb2 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -57,7 +57,7 @@ jobs: steps: - id: checkout-repo name: Checkout repo - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: false - id: review-deps @@ -71,7 +71,7 @@ jobs: - id: setup-dotnet name: Setup .NET - uses: actions/setup-dotnet@c2fa09f4bde5ebb9d1777cf28262a3eb3db3ced7 # v5.2.0 + uses: actions/setup-dotnet@9a946fdbd5fb07b82b2f5a4466058b876ab72bb2 # v5.3.0 with: cache: true cache-dependency-path: "**/packages.lock.json" diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index a554447..7e5ef8b 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -64,7 +64,7 @@ jobs: steps: - id: checkout-repo name: Checkout Repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: true - id: filter diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index a1b00f6..38a5272 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -64,7 +64,7 @@ jobs: steps: - name: Checkout Repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 # https://github.com/adamralph/minver?tab=readme-ov-file#why-is-the-default-version-sometimes-used-in-github-actions-azure-pipelines-and-travis-ci-when-a-version-tag-exists-in-the-history with: fetch-depth: 0 @@ -91,7 +91,7 @@ jobs: - id: setup-dotnet name: Setup .NET Core - uses: actions/setup-dotnet@c2fa09f4bde5ebb9d1777cf28262a3eb3db3ced7 # v5.2.0 + uses: actions/setup-dotnet@9a946fdbd5fb07b82b2f5a4466058b876ab72bb2 # v5.3.0 if: env.ENABLED == '1' with: cache: true @@ -123,7 +123,7 @@ jobs: - id: commit if: env.ENABLED == '1' && steps.pr-check.outputs.pr_found == 'true' - uses: qoomon/actions--create-commit@0f4cc87a8ad11282dfed4639db11c6e4ac09b25b # v1.2.4 + uses: qoomon/actions--create-commit@7102b1a8b3cb8716dc70dbeb6d774c375d779d2f # v1.2.5 with: message: Committing changes to lock files [skip ci] allow-empty: false @@ -175,7 +175,7 @@ jobs: - id: upload-codecov name: Upload code coverage results to codecov if: env.ENABLED == '1' - uses: codecov/codecov-action@57e3a136b779b570ffcdbf80b3bdc90e7fab3de2 # v6.0.0 + uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 with: flags: unittests fail_ci_if_error: true diff --git a/.github/workflows/update_pr.yml b/.github/workflows/update_pr.yml index 55531a7..982a457 100644 --- a/.github/workflows/update_pr.yml +++ b/.github/workflows/update_pr.yml @@ -29,7 +29,7 @@ jobs: if: env.CHECK_PERMISSIONS == '1' - id: update-pr name: Update PR - uses: adRise/update-pr-branch@a51c014567e5be98445551cce9b8f5ad42dd8acf # v0.10.2 + uses: adRise/update-pr-branch@fe3b7082713cc6b51fab6cc16765fa6cbcae8ba4 # v0.11.0 with: token: ${{ secrets.ACTION_USER_TOKEN }} base: master diff --git a/.github/workflows/version_sweeper.yml b/.github/workflows/version_sweeper.yml index d97b7ef..a431ff9 100644 --- a/.github/workflows/version_sweeper.yml +++ b/.github/workflows/version_sweeper.yml @@ -45,7 +45,7 @@ jobs: if: env.CHECK_PERMISSIONS == '1' - id: checkout-repo name: Checkout repo - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: persist-credentials: true # Need to push changes - id: print-reason