diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 16eab9b..397e27a 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -47,7 +47,7 @@ jobs: repo-token: ${{ secrets.GITHUB_TOKEN }} - name: Setup GoReleaser - uses: goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8 # v7.2.1 + uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89 # v7.2.2 with: install-only: true @@ -116,13 +116,13 @@ jobs: cat "${GITHUB_ENV}" - name: Check release config - uses: goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8 # v7.2.1 + uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89 # v7.2.2 with: version: ${{ env.GORELEASER_VERSION }} args: check --config build/package/.goreleaser.yaml - name: Create snapshot release - uses: goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8 # v7.2.1 + uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89 # v7.2.2 with: version: ${{ env.GORELEASER_VERSION }} args: release --config build/package/.goreleaser.yaml --snapshot --skip=publish --clean @@ -152,7 +152,7 @@ jobs: if: ${{ !cancelled() }} - name: Upload Trivy scan results to GitHub Security tab (distroless) - uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5 + uses: github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 with: sarif_file: 'trivy-results-distroless.sarif' category: trivy-results-distroless @@ -173,7 +173,7 @@ jobs: if: ${{ !cancelled() }} - name: Upload Anchore scan results to GitHub Security tab (distroless) - uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5 + uses: github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4.36.0 with: sarif_file: ${{ steps.anchore-distroless.outputs.sarif }} if: ${{ !cancelled() }} diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index f07f035..2478ac0 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -42,7 +42,7 @@ jobs: go-version-file: './go.mod' - name: golangci-lint - uses: golangci/golangci-lint-action@1e7e51e771db61008b38414a730f564565cf7c20 # v9.2.0 + uses: golangci/golangci-lint-action@82606bf257cbaff209d206a39f5134f0cfbfd2ee # v9.2.1 with: version: v${{ env.GOLANGCI_LINT_VERSION }} args: '--issues-exit-code 0 --tests --config .github/linters/.golangci.yml' diff --git a/.github/workflows/licensed.yml b/.github/workflows/licensed.yml index 29e62e3..6139e77 100644 --- a/.github/workflows/licensed.yml +++ b/.github/workflows/licensed.yml @@ -40,7 +40,7 @@ jobs: go mod download -x - name: Setup Ruby - uses: ruby/setup-ruby@97ecb7b512899eb71ab1bf2310a624c6f1589ac6 # v1.308.0 + uses: ruby/setup-ruby@afeafc3d1ab54a631816aba4c914a0081c12ff2f # v1.310.0 with: ruby-version: ruby diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 930bdaa..7c42cdd 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -49,20 +49,20 @@ jobs: release_notes_file: ${{ runner.temp }}/RELEASE_NOTES.md - name: Login to Docker Hub - uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0 + uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0 with: username: ${{ vars.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} - name: Login to GitHub Container registry - uses: docker/login-action@4907a6ddec9925e35a0a9e82d7399ccc52663121 # v4.1.0 + uses: docker/login-action@650006c6eb7dba73a995cc03b0b2d7f5ca915bee # v4.2.0 with: registry: ${{ env.REGISTRY }} username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: GoReleaser - uses: goreleaser/goreleaser-action@1a80836c5c9d9e5755a25cb59ec6f45a3b5f41a8 # v7.2.1 + uses: goreleaser/goreleaser-action@5daf1e915a5f0af01ddbcd89a43b8061ff4f1a89 # v7.2.2 env: GITHUB_TOKEN: ${{ secrets.GH_RELEASE_TOKEN }} with: