From 51d6bbee4a67af3e6252a9dce049cf2648db8699 Mon Sep 17 00:00:00 2001
From: jmeridth <jmeridth@gmail.com>
Date: Sat, 25 Jan 2025 11:22:37 -0600
Subject: [PATCH] ci: change immutable workflows to semver

Fixes security notifications

Signed-off-by: jmeridth <jmeridth@gmail.com>
---
 .github/workflows/collections-renames.yml |  2 +-
 .github/workflows/jekyll_build.yml        |  8 +++---
 .github/workflows/lint.yml                |  2 +-
 .github/workflows/stale.yml               | 30 +++++++++++------------
 .github/workflows/test.yml                |  2 +-
 5 files changed, 22 insertions(+), 22 deletions(-)

diff --git a/.github/workflows/collections-renames.yml b/.github/workflows/collections-renames.yml
index 45ceb446ab6..78cfc9a4678 100644
--- a/.github/workflows/collections-renames.yml
+++ b/.github/workflows/collections-renames.yml
@@ -16,7 +16,7 @@ jobs:
     runs-on: ubuntu-latest
     if: github.repository_owner == 'github'
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@v4.2.2
 
       - name: Setup Ruby
         uses: ruby/setup-ruby@28c4deda893d5a96a6b2d958c5b47fc18d65c9d3 # v1
diff --git a/.github/workflows/jekyll_build.yml b/.github/workflows/jekyll_build.yml
index 2d3dad85229..5d6e00959d5 100644
--- a/.github/workflows/jekyll_build.yml
+++ b/.github/workflows/jekyll_build.yml
@@ -21,7 +21,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: 📂 checkout
-        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+        uses: actions/checkout@v4.2.2
 
       - name: 💎 setup ruby
         uses: ruby/setup-ruby@28c4deda893d5a96a6b2d958c5b47fc18d65c9d3 # v1.213.0
@@ -31,13 +31,13 @@ jobs:
 
       - name: 📄 setup pages
         id: pages
-        uses: actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5
+        uses: actions/configure-pages@v5.0.0
 
       - name: 🔨 install dependencies & build site
         uses: actions/jekyll-build-pages@44a6e6beabd48582f863aeeb6cb2151cc1716697 # v1.0.13
 
       - name: ⚡️ upload artifact
-        uses: actions/upload-pages-artifact@56afc609e74202658d3ffba0e8f6dda462b719fa # v3
+        uses: actions/upload-pages-artifact@v3.0.1
 
   deploy:
     needs: build
@@ -53,4 +53,4 @@ jobs:
     steps:
       - name: 🚀 deploy
         id: deployment
-        uses: actions/deploy-pages@d6db90164ac5ed86f2b6aed7e0febac5b3c0c03e # v4.0.5
+        uses: actions/deploy-pages@v4.0.5
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
index b533306ce6f..572e450222a 100644
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -15,7 +15,7 @@ jobs:
   lint:
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@v4.2.2
 
       - name: Setup Ruby
         uses: ruby/setup-ruby@28c4deda893d5a96a6b2d958c5b47fc18d65c9d3 # v1
diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml
index e608400bc22..e4c4e37e1bf 100644
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@@ -2,7 +2,7 @@ name: Mark stale PRs
 on:
   workflow_dispatch:
   schedule:
-  - cron: "0 12 * * *"
+    - cron: "0 12 * * *"
 
 permissions:
   contents: read
@@ -10,19 +10,19 @@ permissions:
 jobs:
   stale:
     permissions:
-      issues: write  # for actions/stale to close stale issues
-      pull-requests: write  # for actions/stale to close stale PRs
+      issues: write # for actions/stale to close stale issues
+      pull-requests: write # for actions/stale to close stale PRs
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9
-      with:
-        stale-pr-message: >
-          This pull request has been automatically marked as stale because it has not
-          had recent activity. It will be closed if no further activity occurs.
-          Thank you for your contributions.
-        stale-pr-label: "stale"
-        exempt-pr-labels: "pinned,security,dependencies"
-        days-before-pr-stale: 30
-        days-before-pr-close: 7
-        ascending: true
-        operations-per-run: 100
+      - uses: actions/stale@v9.1.0
+        with:
+          stale-pr-message: >
+            This pull request has been automatically marked as stale because it has not
+            had recent activity. It will be closed if no further activity occurs.
+            Thank you for your contributions.
+          stale-pr-label: "stale"
+          exempt-pr-labels: "pinned,security,dependencies"
+          days-before-pr-stale: 30
+          days-before-pr-close: 7
+          ascending: true
+          operations-per-run: 100
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 95580ef1ecc..aff0fd61170 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -22,7 +22,7 @@ jobs:
           - all
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@v4.2.2
         with:
           fetch-depth: 0