Skip to content

Commit f25b9a6

Browse files
SMadaniSMadani
committed
ci: Bump GH Action digest hashes
1 parent ba40d9a commit f25b9a6

File tree

5 files changed

+14
-14
lines changed

5 files changed

+14
-14
lines changed

.github/dependabot.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -5,6 +5,6 @@ updates:
55
- package-ecosystem: "maven"
66
directory: "/"
77
schedule:
8-
interval: "weekly"
8+
interval: "monthly"
99
commit-message:
1010
prefix: "build"

.github/workflows/build.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -21,9 +21,9 @@ jobs:
2121
os: [ubuntu-latest, macos-latest, windows-latest]
2222
steps:
2323
- name: Checkout the repo
24-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
24+
uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2
2525
- name: Setup Java
26-
uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12
26+
uses: actions/setup-java@3b6c050358614dd082e53cdbc55580431fc4e437
2727
with:
2828
distribution: 'zulu'
2929
java-version: ${{ matrix.java }}
@@ -44,9 +44,9 @@ jobs:
4444
os: [ubuntu-latest, macos-latest, windows-latest]
4545
steps:
4646
- name: Checkout the repo
47-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
47+
uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2
4848
- name: Setup Java
49-
uses: actions/setup-java@8df1039502a15bceb9433410b1a100fbe190c53b
49+
uses: actions/setup-java@3b6c050358614dd082e53cdbc55580431fc4e437
5050
with:
5151
distribution: 'corretto'
5252
java-version: ${{ matrix.java }}

.github/workflows/codeql.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -37,11 +37,11 @@ jobs:
3737
build-mode: autobuild
3838
steps:
3939
- name: Checkout repository
40-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
40+
uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2
4141

4242
# Initializes the CodeQL tools for scanning.
4343
- name: Initialize CodeQL
44-
uses: github/codeql-action/init@dd746615b3b9d728a6a37ca2045b68ca76d4841a
44+
uses: github/codeql-action/init@486ab5a2922b634015408a83e10f6867efb5922c
4545
with:
4646
languages: ${{ matrix.language }}
4747
build-mode: ${{ matrix.build-mode }}
@@ -51,6 +51,6 @@ jobs:
5151
# For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
5252
# queries: security-extended,security-and-quality
5353
- name: Perform CodeQL Analysis
54-
uses: github/codeql-action/analyze@dd746615b3b9d728a6a37ca2045b68ca76d4841a
54+
uses: github/codeql-action/analyze@486ab5a2922b634015408a83e10f6867efb5922c
5555
with:
5656
category: "/language:${{matrix.language}}"

.github/workflows/publish.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -13,11 +13,11 @@ jobs:
1313
runs-on: ubuntu-latest
1414
steps:
1515
- name: Checkout the repo
16-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
16+
uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2
1717
with:
1818
ref: ${{ github.event.release.target_commitish }}
1919
- name: Setup Java
20-
uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12
20+
uses: actions/setup-java@3b6c050358614dd082e53cdbc55580431fc4e437
2121
with:
2222
java-version: 21
2323
distribution: 'temurin'

.github/workflows/scorecard.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -32,12 +32,12 @@ jobs:
3232

3333
steps:
3434
- name: "Checkout code"
35-
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
35+
uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2
3636
with:
3737
persist-credentials: false
3838

3939
- name: "Run analysis"
40-
uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46
40+
uses: ossf/scorecard-action@5e6e801bdc1342ad294f36b91afd06af2e4a0f3b
4141
with:
4242
results_file: results.sarif
4343
results_format: sarif
@@ -59,7 +59,7 @@ jobs:
5959
# Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
6060
# format to the repository Actions tab.
6161
- name: "Upload artifact"
62-
uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08
62+
uses: actions/upload-artifact@6027e3dd177782cd8ab9af838c04fd81a07f1d47
6363
with:
6464
name: SARIF file
6565
path: results.sarif
@@ -68,6 +68,6 @@ jobs:
6868
# Upload the results to GitHub's code scanning dashboard (optional).
6969
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
7070
- name: "Upload to code-scanning"
71-
uses: github/codeql-action/upload-sarif@86b04fb0e47484f7282357688f21d5d0e32175fe
71+
uses: github/codeql-action/upload-sarif@486ab5a2922b634015408a83e10f6867efb5922c
7272
with:
7373
sarif_file: results.sarif

0 commit comments

Comments
 (0)