Skip to content

Commit 99067b7

Browse files
Update github actions
1 parent 79e5014 commit 99067b7

5 files changed

Lines changed: 14 additions & 14 deletions

File tree

.github/workflows/codeql.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -58,7 +58,7 @@ jobs:
5858

5959
steps:
6060
- name: Harden Runner
61-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
61+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
6262
with:
6363
egress-policy: audit
6464
disable-telemetry: true
@@ -68,7 +68,7 @@ jobs:
6868

6969
# Initializes the CodeQL tools for scanning.
7070
- name: Initialize CodeQL
71-
uses: github/codeql-action/init@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
71+
uses: github/codeql-action/init@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
7272
with:
7373
languages: ${{ matrix.language }}
7474
# If you wish to specify custom queries, you can do so here or in a config file.
@@ -78,7 +78,7 @@ jobs:
7878
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
7979
# If this step fails, then you should remove it and run the build manually (see below)
8080
- name: Autobuild
81-
uses: github/codeql-action/autobuild@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
81+
uses: github/codeql-action/autobuild@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
8282

8383
# ℹ️ Command-line programs to run using the OS shell.
8484
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -91,6 +91,6 @@ jobs:
9191
# ./location_of_script_within_repo/buildscript.sh
9292

9393
- name: Perform CodeQL Analysis
94-
uses: github/codeql-action/analyze@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
94+
uses: github/codeql-action/analyze@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
9595
with:
9696
category: "/language:${{matrix.language}}"

.github/workflows/pre-merge-ci.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -36,7 +36,7 @@ jobs:
3636
runs-on: ubuntu-latest
3737
steps:
3838
- name: Harden Runner
39-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
39+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
4040
with:
4141
egress-policy: audit
4242
disable-telemetry: true
@@ -45,7 +45,7 @@ jobs:
4545
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4646

4747
- name: Setup Go environment
48-
uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
48+
uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0
4949
with:
5050
go-version-file: go.mod
5151
cache: true

.github/workflows/push-bundles.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -36,7 +36,7 @@ jobs:
3636

3737
steps:
3838
- name: Harden Runner
39-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
39+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
4040
with:
4141
egress-policy: audit
4242
disable-telemetry: true
@@ -49,7 +49,7 @@ jobs:
4949
fetch-depth: 0
5050

5151
- name: Setup Go environment
52-
uses: actions/setup-go@7a3fe6cf4cb3a834922a1244abfce67bcef6a0c5 # v6.2.0
52+
uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0
5353
with:
5454
go-version-file: go.mod
5555
cache: true

.github/workflows/release.yaml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -42,7 +42,7 @@ jobs:
4242
steps:
4343

4444
- name: Harden Runner
45-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
45+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
4646
with:
4747
egress-policy: audit
4848
disable-telemetry: true
@@ -75,7 +75,7 @@ jobs:
7575
steps:
7676

7777
- name: Harden Runner
78-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
78+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
7979
with:
8080
egress-policy: audit
8181
disable-telemetry: true
@@ -131,7 +131,7 @@ jobs:
131131
steps:
132132

133133
- name: Harden Runner
134-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
134+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
135135
with:
136136
egress-policy: audit
137137
disable-telemetry: true
@@ -157,7 +157,7 @@ jobs:
157157
name: release-notes
158158

159159
- name: Create a release
160-
uses: softprops/action-gh-release@a06a81a03ee405af7f2048a818ed3f03bbf83c7b # v2.5.0
160+
uses: softprops/action-gh-release@153bb8e04406b158c6c84fc1615b65b24149a1fe # v2.6.1
161161
with:
162162
name: ${{ needs.get_info.outputs.next_version }}
163163
tag_name: ${{ needs.get_info.outputs.next_version }}

.github/workflows/scorecards.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -48,7 +48,7 @@ jobs:
4848

4949
steps:
5050
- name: Harden Runner
51-
uses: step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
51+
uses: step-security/harden-runner@fa2e9d605c4eeb9fcad4c99c224cee0c6c7f3594 # v2.16.0
5252
with:
5353
egress-policy: audit
5454
disable-telemetry: true
@@ -89,6 +89,6 @@ jobs:
8989

9090
# Upload the results to GitHub's code scanning dashboard.
9191
- name: "Upload to code-scanning"
92-
uses: github/codeql-action/upload-sarif@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
92+
uses: github/codeql-action/upload-sarif@c10b8064de6f491fea524254123dbe5e09572f13 # v4.35.1
9393
with:
9494
sarif_file: results.sarif

0 commit comments

Comments
 (0)