diff --git a/.github/workflows/pull-request.yml b/.github/workflows/pull-request.yml index 2480aba..c6938af 100644 --- a/.github/workflows/pull-request.yml +++ b/.github/workflows/pull-request.yml @@ -10,7 +10,7 @@ jobs: name: Check shell scripts runs-on: ubuntu-latest steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4 - name: Run ShellCheck uses: ludeeus/action-shellcheck@00cae500b08a931fb5698e11e79bfbd38e612a38 # 2.0.0 @@ -20,7 +20,7 @@ jobs: image: rhysd/actionlint:1.6.27 options: --cpus 1 --user root steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4 - name: Validate Github workflows run: | mkdir .git @@ -29,7 +29,7 @@ jobs: lint-markdown: runs-on: ubuntu-latest steps: - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4 - name: Validate Markdown file run: | npm install -g markdownlint-cli diff --git a/.github/workflows/slash_ops_commands.yml b/.github/workflows/slash_ops_commands.yml index 876415a..ab95bb3 100644 --- a/.github/workflows/slash_ops_commands.yml +++ b/.github/workflows/slash_ops_commands.yml @@ -44,7 +44,7 @@ jobs: pull-requests: write steps: - name: Checkout branch - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4 + uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4 with: ref: "refs/pull/${{ github.event.client_payload.slash_command.args.named.pull_request_number }}/head" - run: | @@ -58,13 +58,13 @@ jobs: git-commit-message: "docs: update Terraform docs" git-push: true - - uses: hashicorp/setup-terraform@a1502cd9e758c50496cc9ac5308c4843bcd56d36 # v3.0.0 + - uses: hashicorp/setup-terraform@97f030cf6dc0b4f5e0da352c7bca9cca34579800 # v3.1.0 - name: Terraform fmt id: fmt run: terraform fmt -write=true -recursive - - uses: stefanzweifel/git-auto-commit-action@8756aa072ef5b4a080af5dc8fef36c5d586e521d # v5 + - uses: stefanzweifel/git-auto-commit-action@8621497c8c39c72f3e2a999a26b4ca1b5058a842 # v5 with: commit_message: "chore: format Terraform code" diff --git a/.github/workflows/terraform-tfsec.yml b/.github/workflows/terraform-tfsec.yml index c1ca82c..17f2e01 100644 --- a/.github/workflows/terraform-tfsec.yml +++ b/.github/workflows/terraform-tfsec.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Clone repo - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 - name: Run tfsec uses: tfsec/tfsec-sarif-action@21ded20e8ca120cd9d3d6ab04ef746477542a608 # v0.1.4 @@ -26,7 +26,7 @@ jobs: sarif_file: tfsec.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@4355270be187e1b672a7a1c7c7bae5afdc1ab94a # v3.24.10 + uses: github/codeql-action/upload-sarif@8f596b4ae3cb3c588a5c46780b86dd53fef16c52 # v3.25.2 with: # Path to SARIF file relative to the root of the repository sarif_file: tfsec.sarif diff --git a/.github/workflows/terraform.yml b/.github/workflows/terraform.yml index 49ce14d..6a02113 100644 --- a/.github/workflows/terraform.yml +++ b/.github/workflows/terraform.yml @@ -21,9 +21,9 @@ jobs: run: working-directory: ${{ matrix.directories }} steps: - - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 - - uses: hashicorp/setup-terraform@a1502cd9e758c50496cc9ac5308c4843bcd56d36 # v3.0.0 + - uses: hashicorp/setup-terraform@97f030cf6dc0b4f5e0da352c7bca9cca34579800 # v3.1.0 with: terraform_version: ${{ matrix.terraform }} @@ -36,7 +36,7 @@ jobs: tflint: runs-on: ubuntu-latest steps: - - uses: actions/checkout@9bb56186c3b09b4f86b1c65136769dd318469633 # v4.1.2 + - uses: actions/checkout@1d96c772d19495a3b5c517cd2bc0cb401ea0529f # v4.1.3 - uses: actions/cache@0c45773b623bea8c8e75f6c82b208c3cf94ea4f9 # v4.0.2 name: Cache plugin dir