diff --git a/.github/workflows/ci-python.yml b/.github/workflows/ci-python.yml index a6aa76f038d..46409966334 100644 --- a/.github/workflows/ci-python.yml +++ b/.github/workflows/ci-python.yml @@ -116,7 +116,7 @@ jobs: - name: Restore libparsec if Rust hasn't been modified if: (!inputs.style-only) id: cache-libparsec - uses: actions/cache/restore@704facf57e6136b1bc63b828d79edcd491f0ee84 # pin v3.3.2 + uses: actions/cache/restore@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # pin v4.0.0 with: key: ${{ steps.cache-key.outputs.key }} path: | @@ -127,7 +127,7 @@ jobs: timeout-minutes: 2 - name: Setup Rust toolchain - uses: actions-rust-lang/setup-rust-toolchain@c7e1de28469b16b21a170a200a7a9e810bb5cdff # pin v1.6.0 + uses: actions-rust-lang/setup-rust-toolchain@b113a30d27a8e59c969077c0a0168cc13dab5ffc # pin v1.8.0 if: (!inputs.style-only) && steps.cache-libparsec.outputs.cache-hit != 'true' with: # We setup the cache by hand, see below @@ -135,7 +135,7 @@ jobs: timeout-minutes: 5 - name: Retrieve Rust cache - uses: Swatinem/rust-cache@3cf7f8cc28d1b4e7d01e3783be10a97d55d483c8 # pin v2.7.1 + uses: Swatinem/rust-cache@23bce251a8cd2ffc3c1075eaa2367cf899916d84 # pin v2.7.3 if: (!inputs.style-only) && steps.cache-libparsec.outputs.cache-hit != 'true' with: # Cache is limited to 10Go (and cache is ~700mo per platform !). On top of that. @@ -194,7 +194,7 @@ jobs: (!inputs.style-only) && steps.cache-libparsec.outputs.cache-hit != 'true' && !contains(github.ref, 'gh-readonly-queue') - uses: actions/cache/save@704facf57e6136b1bc63b828d79edcd491f0ee84 # pin v3.3.2 + uses: actions/cache/save@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # pin v4.0.0 with: key: ${{ steps.cache-key.outputs.key }} path: | diff --git a/.github/workflows/ci-rust.yml b/.github/workflows/ci-rust.yml index 5b38617fafd..e0df68980b3 100644 --- a/.github/workflows/ci-rust.yml +++ b/.github/workflows/ci-rust.yml @@ -70,14 +70,14 @@ jobs: - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin v4.1.1 timeout-minutes: 5 - - uses: actions-rust-lang/setup-rust-toolchain@c7e1de28469b16b21a170a200a7a9e810bb5cdff # pin v1.6.0 + - uses: actions-rust-lang/setup-rust-toolchain@b113a30d27a8e59c969077c0a0168cc13dab5ffc # pin v1.8.0 with: # We setup the cache by hand, see below cache: false timeout-minutes: 10 - name: Retrieve Rust cache - uses: Swatinem/rust-cache@3cf7f8cc28d1b4e7d01e3783be10a97d55d483c8 # pin v2.7.1 + uses: Swatinem/rust-cache@23bce251a8cd2ffc3c1075eaa2367cf899916d84 # pin v2.7.3 with: # Cache is limited to 10Go (and cache is ~700mo per platform !). On top of that. # cache is only shared between master and the PRs (and not across PRs). @@ -96,7 +96,7 @@ jobs: timeout-minutes: 5 # Install cargo nextest command - - uses: taiki-e/install-action@da1493208a5b2c79ad2d7dff9fd50693851da51a # pin v2.24.1 + - uses: taiki-e/install-action@8984d603c208823d3c1a1b796f4081736f3ae3f9 # pin v2.25.9 with: tool: nextest@0.9.54, wasm-pack@0.11.0, cargo-deny@0.14.3 @@ -188,14 +188,14 @@ jobs: - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # pin v4.1.1 timeout-minutes: 5 - - uses: actions-rust-lang/setup-rust-toolchain@c7e1de28469b16b21a170a200a7a9e810bb5cdff # pin v1.6.0 + - uses: actions-rust-lang/setup-rust-toolchain@b113a30d27a8e59c969077c0a0168cc13dab5ffc # pin v1.8.0 with: # We setup the cache by hand, see below cache: false timeout-minutes: 10 - name: Retrieve Rust cache - uses: Swatinem/rust-cache@3cf7f8cc28d1b4e7d01e3783be10a97d55d483c8 # pin v2.7.1 + uses: Swatinem/rust-cache@23bce251a8cd2ffc3c1075eaa2367cf899916d84 # pin v2.7.3 with: # Cache is limited to 10Go (and cache is ~700mo per platform !). On top of that. # cache is only shared between master and the PRs (and not across PRs). @@ -224,7 +224,7 @@ jobs: mv 'D:/a/_temp/winfsp-tests-x64.exe' 'C:/Program Files (x86)/WinFsp/bin/' # Install cargo nextest command - - uses: taiki-e/install-action@da1493208a5b2c79ad2d7dff9fd50693851da51a # pin v2.24.1 + - uses: taiki-e/install-action@8984d603c208823d3c1a1b796f4081736f3ae3f9 # pin v2.25.9 with: tool: nextest@0.9.54 diff --git a/.github/workflows/ci-web.yml b/.github/workflows/ci-web.yml index 434b6c35e00..1d0b2cba968 100644 --- a/.github/workflows/ci-web.yml +++ b/.github/workflows/ci-web.yml @@ -81,7 +81,7 @@ jobs: - name: Restore libparsec if Rust hasn't been modified id: cache-libparsec - uses: actions/cache/restore@704facf57e6136b1bc63b828d79edcd491f0ee84 # pin v3.3.2 + uses: actions/cache/restore@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # pin v4.0.0 with: key: ${{ steps.cache-key.outputs.key }} path: | @@ -90,7 +90,7 @@ jobs: timeout-minutes: 2 - name: Setup Rust toolchain - uses: actions-rust-lang/setup-rust-toolchain@c7e1de28469b16b21a170a200a7a9e810bb5cdff # pin v1.6.0 + uses: actions-rust-lang/setup-rust-toolchain@b113a30d27a8e59c969077c0a0168cc13dab5ffc # pin v1.8.0 if: steps.cache-libparsec.outputs.cache-hit != 'true' with: target: wasm32-unknown-unknown @@ -99,7 +99,7 @@ jobs: timeout-minutes: 5 - name: Retrieve Rust cache - uses: Swatinem/rust-cache@3cf7f8cc28d1b4e7d01e3783be10a97d55d483c8 # pin v2.7.1 + uses: Swatinem/rust-cache@23bce251a8cd2ffc3c1075eaa2367cf899916d84 # pin v2.7.3 if: steps.cache-libparsec.outputs.cache-hit != 'true' with: # Cache is limited to 10Go (and cache is ~700mo per platform !). On top of that. @@ -110,7 +110,7 @@ jobs: timeout-minutes: 5 # Install wasm-pack command - - uses: taiki-e/install-action@da1493208a5b2c79ad2d7dff9fd50693851da51a # pin v2.24.1 + - uses: taiki-e/install-action@8984d603c208823d3c1a1b796f4081736f3ae3f9 # pin v2.25.9 with: tool: wasm-pack@${{ env.wasm-pack-version }} @@ -122,7 +122,7 @@ jobs: - name: Save libparsec to be reuse later if: steps.cache-libparsec.outputs.cache-hit != 'true' - uses: actions/cache/save@704facf57e6136b1bc63b828d79edcd491f0ee84 # pin v3.3.2 + uses: actions/cache/save@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # pin v4.0.0 with: key: ${{ steps.cache-key.outputs.key }} path: | diff --git a/.github/workflows/cspell.yml b/.github/workflows/cspell.yml index 9b06882fd4b..64c73003e53 100644 --- a/.github/workflows/cspell.yml +++ b/.github/workflows/cspell.yml @@ -54,7 +54,7 @@ jobs: - name: Restore cspell cache id: cache - uses: actions/cache/restore@704facf57e6136b1bc63b828d79edcd491f0ee84 # pin v3.3.2 + uses: actions/cache/restore@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # pin v4.0.0 with: path: | package-lock.json @@ -91,7 +91,7 @@ jobs: if: >- steps.installation.outputs.previous-cache-hash != hashFiles('.cspellcache') && contains(github.ref, 'gh-readonly-queue') != 'true' - uses: actions/cache/save@704facf57e6136b1bc63b828d79edcd491f0ee84 # pin v3.3.2 + uses: actions/cache/save@13aacd865c20de90d75de3b17ebe84f7a17d57d2 # pin v4.0.0 with: key: ${{ steps.cache-key.outputs.key }} path: | diff --git a/.github/workflows/package-ionic-app.yml b/.github/workflows/package-ionic-app.yml index 45c9dc14f34..087a1a4dffc 100644 --- a/.github/workflows/package-ionic-app.yml +++ b/.github/workflows/package-ionic-app.yml @@ -41,7 +41,7 @@ jobs: working-directory: client # Install syft - - uses: taiki-e/install-action@da1493208a5b2c79ad2d7dff9fd50693851da51a # pin v2.24.1 + - uses: taiki-e/install-action@8984d603c208823d3c1a1b796f4081736f3ae3f9 # pin v2.25.9 with: tool: syft@0.84.0, wasm-pack@${{ env.wasm-pack-version }} @@ -56,7 +56,7 @@ jobs: - name: Generate SBOM run: syft packages --config=.syft.yaml --output=spdx-json=Parsec-SBOM-Web.spdx.json . - - uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # pin v4.0.0 + - uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # pin v4.2.0 with: name: webapp path: | @@ -118,14 +118,14 @@ jobs: timeout-minutes: 5 # Install syft - - uses: taiki-e/install-action@da1493208a5b2c79ad2d7dff9fd50693851da51a # pin v2.24.1 + - uses: taiki-e/install-action@8984d603c208823d3c1a1b796f4081736f3ae3f9 # pin v2.25.9 with: tool: syft@0.84.0 - name: Generate SBOM run: syft packages --config=.syft.yaml --output=spdx-json=Parsec-SBOM-Electron-${{ matrix.platform }}.spdx.json . - - uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # pin v4.0.0 + - uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # pin v4.2.0 with: name: ${{ runner.os }}-${{ runner.arch }}-electron-app path: | diff --git a/.github/workflows/package-server.yml b/.github/workflows/package-server.yml index bab283c24ab..ad3a0a87b23 100644 --- a/.github/workflows/package-server.yml +++ b/.github/workflows/package-server.yml @@ -139,14 +139,14 @@ jobs: run: python server/packaging/wheel/wheel_it.py ./server --output dist --skip-wheel # Install syft - - uses: taiki-e/install-action@da1493208a5b2c79ad2d7dff9fd50693851da51a # pin v2.24.1 + - uses: taiki-e/install-action@8984d603c208823d3c1a1b796f4081736f3ae3f9 # pin v2.25.9 with: tool: syft@0.84.0 - name: Generate SBOM run: syft packages --config=.syft.yaml --output=spdx-json=dist/Parsec-SBOM-Wheel-${{ matrix.platform }}.spdx.json . - - uses: actions/upload-artifact@c7d193f32edcb7bfad88892161225aeda64e9392 # pin v4.0.0 + - uses: actions/upload-artifact@694cdabd8bdb0f10b2cea11669e1bf5453eed0a6 # pin v4.2.0 with: name: ${{ runner.os }}-${{ runner.arch }}-wheel path: | diff --git a/.github/workflows/releaser.yml b/.github/workflows/releaser.yml index 31a6cc40b93..8b471f73c7e 100644 --- a/.github/workflows/releaser.yml +++ b/.github/workflows/releaser.yml @@ -86,7 +86,7 @@ jobs: runs-on: ubuntu-22.04 steps: - name: Download every artifact generated (and uploaded) - uses: actions/download-artifact@f44cd7b40bfd40b6aa1cc1b9b5b7bf03d3c67110 # pin v4.1.0 + uses: actions/download-artifact@6b208ae046db98c579e8a3aa621ab581ff575935 # pin v4.1.1 with: path: artifacts timeout-minutes: 5