chore(ci): drop pins from allowlisted action org (#2027)

Author: DerekRoberts

.github/workflows/.tests.yml

@@ -42,7 +42,7 @@ jobs:
       - if: steps.triggers.outputs.triggered == 'false'
         run: echo "No tests required/triggered!"
 
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@v4
         if: steps.triggers.outputs.triggered == 'true'
 
       - name: Run Cypress CI
@@ -70,7 +70,7 @@ jobs:
             -Dsonar.test.inclusions=cypress/e2e/smoke-test-04/**/*
           sonar_token: ${{ secrets.SONAR_FRONTEND }}
       - name: Upload videos
-        uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
+        uses: actions/upload-artifact@v4
         if: always()
         with:
           name: cypress-videos-chrome

.github/workflows/analysis.yml

@@ -71,7 +71,7 @@ jobs:
       security-events: write
     runs-on: ubuntu-24.04
     steps:
-      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+      - uses: actions/checkout@v4
       - name: Run Trivy vulnerability scanner in repo mode
         uses: aquasecurity/trivy-action@76071ef0d7ec797419534a183b498b4d6366cf37 # 0.31.0
         with:
@@ -83,7 +83,7 @@ jobs:
           severity: "CRITICAL,HIGH"
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@fca7ace96b7d713c7035871441bd52efbe39e27e # v3
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: "trivy-results.sarif"