From 56e41319f2ac866114d7929263f35c1f5a01cf50 Mon Sep 17 00:00:00 2001 From: Patrick Linnane Date: Thu, 12 Dec 2024 21:26:46 -0800 Subject: [PATCH] workflows: use full version numbers Signed-off-by: Patrick Linnane --- .github/workflows/actionlint.yml | 6 +++--- .github/workflows/autogenerated-files.yml | 2 +- .github/workflows/codeql-analysis.yml | 6 +++--- .github/workflows/docker.yml | 14 +++++++------- .github/workflows/docs.yml | 2 +- .github/workflows/pkg-installer.yml | 8 ++++---- .github/workflows/rubydoc.yml | 2 +- .../sponsors-maintainers-man-completions.yml | 2 +- .github/workflows/tests.yml | 12 ++++++------ .github/workflows/vendor-gems.yml | 2 +- 10 files changed, 28 insertions(+), 28 deletions(-) diff --git a/.github/workflows/actionlint.yml b/.github/workflows/actionlint.yml index 8d68cac31260e..b7f0c76df1ae3 100644 --- a/.github/workflows/actionlint.yml +++ b/.github/workflows/actionlint.yml @@ -57,7 +57,7 @@ jobs: zizmor --format sarif . > results.sarif || true - name: Upload SARIF file - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 with: name: results.sarif path: results.sarif @@ -72,13 +72,13 @@ jobs: security-events: write steps: - name: Download SARIF file - uses: actions/download-artifact@v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: results.sarif path: results.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@86b04fb0e47484f7282357688f21d5d0e32175fe # v3.27.9 with: sarif_file: results.sarif category: zizmor diff --git a/.github/workflows/autogenerated-files.yml b/.github/workflows/autogenerated-files.yml index cf5667e088e7f..bd0bf5cd45592 100644 --- a/.github/workflows/autogenerated-files.yml +++ b/.github/workflows/autogenerated-files.yml @@ -34,7 +34,7 @@ jobs: test-bot: true - name: Cache Bundler RubyGems - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ${{ steps.set-up-homebrew.outputs.gems-path }} key: ${{ runner.os }}-rubygems-${{ steps.set-up-homebrew.outputs.gems-hash }} diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 30b8ade7f58ab..cc4c3ff05cb29 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -23,12 +23,12 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false - name: Initialize CodeQL - uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3 + uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3.27.9 with: languages: ruby config: | @@ -36,4 +36,4 @@ jobs: - Library/Homebrew/vendor - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3 + uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3.27.9 diff --git a/.github/workflows/docker.yml b/.github/workflows/docker.yml index ac3c56d8a1594..7941eb0da6ef1 100644 --- a/.github/workflows/docker.yml +++ b/.github/workflows/docker.yml @@ -25,7 +25,7 @@ jobs: version: ["18.04", "20.04", "22.04", "24.04"] steps: - name: Checkout - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: fetch-depth: 0 persist-credentials: false @@ -34,7 +34,7 @@ jobs: run: git fetch origin master - name: Set up Docker Buildx - uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3 + uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1 - name: Determine build attributes id: attributes @@ -100,14 +100,14 @@ jobs: } | tee -a "${GITHUB_OUTPUT}" - name: Log in to GitHub Packages (github-actions[bot]) - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3 + uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 with: registry: ghcr.io username: github-actions[bot] password: ${{ secrets.GITHUB_TOKEN }} - name: Build Docker image - uses: docker/build-push-action@48aba3b46d1b1fec4febb7c5d0c644b249a11355 # v6 + uses: docker/build-push-action@48aba3b46d1b1fec4febb7c5d0c644b249a11355 # v6.10.0 with: context: . load: true @@ -121,7 +121,7 @@ jobs: - name: Log in to GitHub Packages (BrewTestBot) if: steps.attributes.outputs.push == 'true' - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3 + uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 with: registry: ghcr.io username: BrewTestBot @@ -129,14 +129,14 @@ jobs: - name: Log in to Docker Hub if: steps.attributes.outputs.push == 'true' - uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3 + uses: docker/login-action@9780b0c442fbb1117ed29e0efdff1e18412f7567 # v3.3.0 with: username: brewtestbot password: ${{ secrets.HOMEBREW_BREW_DOCKER_TOKEN }} - name: Deploy the tagged Docker image if: steps.attributes.outputs.push == 'true' - uses: docker/build-push-action@48aba3b46d1b1fec4febb7c5d0c644b249a11355 # v6 + uses: docker/build-push-action@48aba3b46d1b1fec4febb7c5d0c644b249a11355 # v6.10.0 with: context: . push: true diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 84a849a63ab53..e0005dbecbdd0 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -32,7 +32,7 @@ jobs: test-bot: false - name: Checkout repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false diff --git a/.github/workflows/pkg-installer.yml b/.github/workflows/pkg-installer.yml index a80f8236524e6..24355b0f9a18b 100644 --- a/.github/workflows/pkg-installer.yml +++ b/.github/workflows/pkg-installer.yml @@ -79,7 +79,7 @@ jobs: run: rm -f "${RUNNER_TEMP}/${TEMPORARY_CERTIFICATE_FILE}" - name: Checkout another Homebrew to brew subdirectory - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: path: brew fetch-depth: 0 @@ -138,7 +138,7 @@ jobs: subject-path: Homebrew-${{ steps.homebrew-version.outputs.version }}.pkg - name: Upload installer to GitHub Actions - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4 + uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 with: name: Homebrew-${{ steps.homebrew-version.outputs.version }}.pkg path: Homebrew-${{ steps.homebrew-version.outputs.version }}.pkg @@ -160,7 +160,7 @@ jobs: name: macos-15-arm64 steps: - name: Download installer from GitHub Actions - uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: "${{ needs.build.outputs.installer_path }}" @@ -213,7 +213,7 @@ jobs: contents: write steps: - name: Download installer from GitHub Actions - uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: "${{ needs.build.outputs.installer_path }}" diff --git a/.github/workflows/rubydoc.yml b/.github/workflows/rubydoc.yml index 373b6a5cf18fe..58ac8dc9b4629 100644 --- a/.github/workflows/rubydoc.yml +++ b/.github/workflows/rubydoc.yml @@ -36,7 +36,7 @@ jobs: test-bot: false - name: Checkout Homebrew/rubydoc.brew.sh - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: repository: Homebrew/rubydoc.brew.sh path: rubydoc diff --git a/.github/workflows/sponsors-maintainers-man-completions.yml b/.github/workflows/sponsors-maintainers-man-completions.yml index a7e8b993fb663..10a200468e94e 100644 --- a/.github/workflows/sponsors-maintainers-man-completions.yml +++ b/.github/workflows/sponsors-maintainers-man-completions.yml @@ -49,7 +49,7 @@ jobs: signing_key: ${{ secrets.BREWTESTBOT_GPG_SIGNING_SUBKEY }} - name: Cache Bundler RubyGems - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ${{ steps.set-up-homebrew.outputs.gems-path }} key: ${{ runner.os }}-rubygems-${{ steps.set-up-homebrew.outputs.gems-hash }} diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index cfeb09c78ad7a..b50d170b3311d 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -37,7 +37,7 @@ jobs: test-bot: false - name: Cache Bundler RubyGems - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ${{ steps.set-up-homebrew.outputs.gems-path }} key: ${{ runner.os }}-rubygems-syntax-${{ steps.set-up-homebrew.outputs.gems-hash }} @@ -50,7 +50,7 @@ jobs: run: brew install shellcheck shfmt - name: Cache style cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ~/.cache/Homebrew/style key: syntax-style-cache-${{ github.sha }} @@ -89,7 +89,7 @@ jobs: test-bot: true - name: Cache Bundler RubyGems - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ${{ steps.set-up-homebrew.outputs.gems-path }} key: ${{ runner.os }}-rubygems-tap-syntax-${{ steps.set-up-homebrew.outputs.gems-hash }} @@ -99,7 +99,7 @@ jobs: run: brew install-bundler-gems --groups=style - name: Cache style cache - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ~/.cache/Homebrew/style key: tap-syntax-style-cache-${{ github.sha }} @@ -282,7 +282,7 @@ jobs: test-bot: false - name: Cache Bundler RubyGems - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: ${{ steps.set-up-homebrew.outputs.gems-path }} key: ${{ matrix.runs-on }}-tests-rubygems-${{ steps.set-up-homebrew.outputs.gems-hash }} @@ -297,7 +297,7 @@ jobs: run: mkdir tests - name: Cache parallel tests log - uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4 + uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0 with: path: tests key: ${{ runner.os }}-${{ matrix.test-flags }}-parallel_runtime_rspec-${{ github.sha }} diff --git a/.github/workflows/vendor-gems.yml b/.github/workflows/vendor-gems.yml index 649d45bab6e44..705661bd5611d 100644 --- a/.github/workflows/vendor-gems.yml +++ b/.github/workflows/vendor-gems.yml @@ -94,7 +94,7 @@ jobs: fi - name: Generate push token - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1 + uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1.11.0 id: app-token if: github.event_name == 'workflow_dispatch' with: