Merge pull request #109 from fish-shop/dependabot/github_actions/vers…

…ion-updates-de78ac5388
fish-shop · Jan 10, 2025 · 9b876e4 · 9b876e4
2 parents ed88861 + 063f421
commit 9b876e4
Show file tree

Hide file tree

Showing 4 changed files with 6 additions and 6 deletions.
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -10,4 +10,4 @@ jobs:
   dependency-review:
     permissions:
       pull-requests: write
-    uses: fish-shop/workflows/.github/workflows/dependency-review.yml@87881b58a2286829a28c4053900560a2eeeed396 # v1.10.0
+    uses: fish-shop/workflows/.github/workflows/dependency-review.yml@d975a6058f869aa54ba816b6befa6711b6f39f8d # v1.10.1
diff --git a/.github/workflows/markdown-links.yml b/.github/workflows/markdown-links.yml
@@ -10,4 +10,4 @@ jobs:
   markdown-links:
     permissions:
       pull-requests: write
-    uses: fish-shop/workflows/.github/workflows/markdown-links.yml@87881b58a2286829a28c4053900560a2eeeed396 # v1.10.0
+    uses: fish-shop/workflows/.github/workflows/markdown-links.yml@d975a6058f869aa54ba816b6befa6711b6f39f8d # v1.10.1
diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml
@@ -17,7 +17,7 @@ jobs:
       id-token: write # Needed to publish results to OpenSSF API and get a badge (see publish_results below)
     steps:
       - name: Harden runner
-        uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f # v2.10.2
+        uses: step-security/harden-runner@c95a14d0e5bab51a9f56296a4eb0e416910cd350 # v2.10.3
         with:
           egress-policy: audit
       - name: Checkout repository
@@ -31,12 +31,12 @@ jobs:
           results_format: sarif
           publish_results: true
       - name: Upload Actions artifact
-        uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0
+        uses: actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
         with:
           name: SARIF file
           path: results.sarif
           retention-days: 5
       - name: Upload to code scanning dashboard
-        uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0
+        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c # v3.28.1
         with:
           sarif_file: results.sarif
diff --git a/.github/workflows/release-tags.yml b/.github/workflows/release-tags.yml
@@ -10,4 +10,4 @@ jobs:
   release-tags:
     permissions:
       contents: write
-    uses: fish-shop/workflows/.github/workflows/release-tags.yml@87881b58a2286829a28c4053900560a2eeeed396 # v1.10.0
+    uses: fish-shop/workflows/.github/workflows/release-tags.yml@d975a6058f869aa54ba816b6befa6711b6f39f8d # v1.10.1