From 5a9ff40a2aa4fe21743caa8f1a56ac4b7432fe9a Mon Sep 17 00:00:00 2001
From: hellodword <46193371+hellodword@users.noreply.github.com>
Date: Sat, 29 Jun 2024 11:51:28 +0000
Subject: [PATCH] Pin external actions for security

---
 .github/workflows/push-docker-image-reusable.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/push-docker-image-reusable.yml b/.github/workflows/push-docker-image-reusable.yml
index 27fcd18..aa260bf 100644
--- a/.github/workflows/push-docker-image-reusable.yml
+++ b/.github/workflows/push-docker-image-reusable.yml
@@ -52,14 +52,14 @@ jobs:
           echo ARTIFACT_PREFIX=${{ github.event.repository.name }}_${{ steps.release-version.outputs.RELEASE_VERSION }} >> $GITHUB_ENV
 
       - name: Download release asset amd64
-        uses: dsaltares/fetch-gh-release-asset@master
+        uses: dsaltares/fetch-gh-release-asset@aa2ab1243d6e0d5b405b973c89fa4d06a2d0fff7
         with:
           version: tags/${{ inputs.release }}
           file: ${{ env.ARTIFACT_PREFIX }}_amd64.deb
           token: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Download release asset arm64
-        uses: dsaltares/fetch-gh-release-asset@master
+        uses: dsaltares/fetch-gh-release-asset@aa2ab1243d6e0d5b405b973c89fa4d06a2d0fff7
         with:
           version: tags/${{ inputs.release }}
           file: ${{ env.ARTIFACT_PREFIX }}_arm64.deb