diff --git a/.github/workflows/ci-checks.yml b/.github/workflows/ci-checks.yml index ff830ed..acba936 100644 --- a/.github/workflows/ci-checks.yml +++ b/.github/workflows/ci-checks.yml @@ -170,7 +170,7 @@ jobs: - name: Install cargo-deny # v2.67.25 uses: >- - taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 + taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-deny diff --git a/.github/workflows/ci-coverage.yml b/.github/workflows/ci-coverage.yml index 83a9bb0..b34820e 100644 --- a/.github/workflows/ci-coverage.yml +++ b/.github/workflows/ci-coverage.yml @@ -33,7 +33,7 @@ jobs: - name: Install cargo-llvm-cov # v2.67.25 uses: >- - taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 + taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-llvm-cov@0.6.14 diff --git a/.github/workflows/code-quality.yml b/.github/workflows/code-quality.yml index 96f0494..c1dc625 100644 --- a/.github/workflows/code-quality.yml +++ b/.github/workflows/code-quality.yml @@ -26,7 +26,7 @@ jobs: - name: Install analysis tools # v2.67.18 - uses: taiki-e/install-action@1c0532667bd5bc37f71fc223a52e7c41c966d9d7 + uses: taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-geiger,cargo-bloat diff --git a/.github/workflows/copilot-setup-steps.yml b/.github/workflows/copilot-setup-steps.yml index 6d272da..68f10a9 100644 --- a/.github/workflows/copilot-setup-steps.yml +++ b/.github/workflows/copilot-setup-steps.yml @@ -33,7 +33,7 @@ jobs: - name: Install cargo-deny # v2.67.25 - uses: taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 + uses: taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-deny diff --git a/.github/workflows/dependabot-automerge.yml b/.github/workflows/dependabot-automerge.yml index ba0f524..3e99e41 100644 --- a/.github/workflows/dependabot-automerge.yml +++ b/.github/workflows/dependabot-automerge.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Dependabot metadata id: metadata - uses: dependabot/fetch-metadata@5e5f99653a5b510e8555840e80cbf1514ad4af38 # v2.2.0 + uses: dependabot/fetch-metadata@21025c705c08248db411dc16f3619e6b5f9ea21a # v2.2.0 - name: Auto-merge patch and minor updates if: steps.metadata.outputs.update-type == 'version-update:semver-patch' || steps.metadata.outputs.update-type == 'version-update:semver-minor' diff --git a/.github/workflows/docker-hub.yml b/.github/workflows/docker-hub.yml index 143fa89..7793424 100644 --- a/.github/workflows/docker-hub.yml +++ b/.github/workflows/docker-hub.yml @@ -30,7 +30,7 @@ jobs: - name: Extract metadata id: meta - uses: docker/metadata-action@8e5442c4ef9f78752691e2d8f8d19755c6f78e81 # v5.5.1 + uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5.10.0 with: images: | ${{ github.repository }} @@ -55,7 +55,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Build and push - uses: docker/build-push-action@4f7cdeb0f05278b464e71357394bf2c61f94138e # v6.10.0 + uses: docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 # v6.10.0 with: context: . platforms: linux/amd64,linux/arm64 diff --git a/.github/workflows/docs-deploy.yml b/.github/workflows/docs-deploy.yml index 4c23bae..5f9dba6 100644 --- a/.github/workflows/docs-deploy.yml +++ b/.github/workflows/docs-deploy.yml @@ -40,7 +40,7 @@ jobs: echo '' > target/doc/index.html - name: Install mdBook - uses: taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 # v2.67.25 + uses: taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 # v2.67.30 with: tool: mdbook@0.4.40 diff --git a/.github/workflows/fuzz-testing.yml b/.github/workflows/fuzz-testing.yml index 5aaef5b..7a76803 100644 --- a/.github/workflows/fuzz-testing.yml +++ b/.github/workflows/fuzz-testing.yml @@ -34,7 +34,7 @@ jobs: toolchain: nightly - name: Install cargo-fuzz - uses: taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 # v2.67.25 + uses: taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 # v2.67.30 with: tool: cargo-fuzz@0.12.0 diff --git a/.github/workflows/mutation-testing.yml b/.github/workflows/mutation-testing.yml index d96a306..e04edee 100644 --- a/.github/workflows/mutation-testing.yml +++ b/.github/workflows/mutation-testing.yml @@ -52,7 +52,7 @@ jobs: key: ${{ runner.os }}-target-mutation-${{ hashFiles('**/Cargo.lock') }} - name: Install cargo-mutants - uses: taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 # v2.67.25 + uses: taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 # v2.67.30 with: tool: cargo-mutants@24.11.0 diff --git a/.github/workflows/nightly.yml b/.github/workflows/nightly.yml index 48f5eae..cdf71f3 100644 --- a/.github/workflows/nightly.yml +++ b/.github/workflows/nightly.yml @@ -38,7 +38,7 @@ jobs: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Create nightly release - uses: softprops/action-gh-release@c062e08bd532815e2082a85e87e3ef29c3e6d191 # v2.2.0 + uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.2.0 with: tag_name: nightly name: Nightly Build diff --git a/.github/workflows/pipeline.yml b/.github/workflows/pipeline.yml index 1569a29..d97ec1c 100644 --- a/.github/workflows/pipeline.yml +++ b/.github/workflows/pipeline.yml @@ -216,7 +216,7 @@ jobs: id-token: write contents: write uses: >- - slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.0.0 + slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v2.1.0 with: base64-subjects: >- ${{ needs.slsa-build.outputs.hashes }} diff --git a/.github/workflows/release-create.yml b/.github/workflows/release-create.yml index 143aaac..43e6bfb 100644 --- a/.github/workflows/release-create.yml +++ b/.github/workflows/release-create.yml @@ -45,7 +45,7 @@ jobs: id: changelog # v4.5.0 uses: >- - orhun/git-cliff-action@e615672902de82edb33eddcb803a1295fc409525 + orhun/git-cliff-action@e16f179f0be49ecdfe63753837f20b9531642772 with: config: cliff.toml args: --latest --strip header @@ -54,7 +54,7 @@ jobs: id: create_release # v2.0.3 uses: >- - softprops/action-gh-release@e798e6a1ede8d07b74ac4cdac6bdfa4cc1653907 + softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b with: tag_name: ${{ inputs.tag }} name: >- @@ -66,7 +66,7 @@ jobs: - name: Generate full changelog # v4.5.0 uses: >- - orhun/git-cliff-action@e615672902de82edb33eddcb803a1295fc409525 + orhun/git-cliff-action@e16f179f0be49ecdfe63753837f20b9531642772 with: config: cliff.toml args: --verbose diff --git a/.github/workflows/release-docker.yml b/.github/workflows/release-docker.yml index 319f23d..02582dc 100644 --- a/.github/workflows/release-docker.yml +++ b/.github/workflows/release-docker.yml @@ -51,7 +51,7 @@ jobs: id: meta # v6.0.0 uses: >- - docker/metadata-action@a60f0f62b5c12316066c8db464bfb2faafd7907b + docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 with: images: >- ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} @@ -67,7 +67,7 @@ jobs: - name: Build and push Docker image # v6.10.0 uses: >- - docker/build-push-action@8c1e8f8e5bf845ba3773a14f3967965548a2341e + docker/build-push-action@10e90e3645eae34f1e60eeb005ba3a3d33f178e8 with: context: . platforms: linux/amd64,linux/arm64 diff --git a/.github/workflows/release-packages.yml b/.github/workflows/release-packages.yml index fe234c2..8f8bed3 100644 --- a/.github/workflows/release-packages.yml +++ b/.github/workflows/release-packages.yml @@ -207,7 +207,7 @@ jobs: - name: Install cargo-deb # v2.67.25 uses: >- - taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 + taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-deb@2.7.0 @@ -254,7 +254,7 @@ jobs: - name: Install cargo-generate-rpm # v2.67.25 uses: >- - taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 + taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-generate-rpm@0.15.1 diff --git a/.github/workflows/release-sbom.yml b/.github/workflows/release-sbom.yml index 69595ef..6891cb9 100644 --- a/.github/workflows/release-sbom.yml +++ b/.github/workflows/release-sbom.yml @@ -37,7 +37,7 @@ jobs: - name: Install cargo-sbom # v2.67.25 uses: >- - taiki-e/install-action@f176c07a0a40cbfdd08ee9aa8bf1655701d11e69 + taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-sbom diff --git a/.github/workflows/security-audit.yml b/.github/workflows/security-audit.yml index 23bcbe3..427a4b6 100644 --- a/.github/workflows/security-audit.yml +++ b/.github/workflows/security-audit.yml @@ -32,7 +32,7 @@ jobs: - name: Install cargo-audit # v2.67.18 - uses: taiki-e/install-action@1c0532667bd5bc37f71fc223a52e7c41c966d9d7 + uses: taiki-e/install-action@288875dd3d64326724fa6d9593062d9f8ba0b131 with: tool: cargo-audit diff --git a/.github/workflows/spell-check.yml b/.github/workflows/spell-check.yml index 2b36ed0..56edc31 100644 --- a/.github/workflows/spell-check.yml +++ b/.github/workflows/spell-check.yml @@ -21,7 +21,7 @@ jobs: - name: Check spelling with typos # master (latest) - uses: crate-ci/typos@9066e9940a8a05b98fb4733c62a726f83c9e57f8 + uses: crate-ci/typos@57b11c6b7e54c402ccd9cda953f1072ec4f78e33 continue-on-error: true with: files: .