Skip to content

Commit d445451

Browse files
renovate-sh-app[bot]renovate-sh-app[bot]
authored
chore(deps): pin dependencies
Signed-off-by: renovate-sh-app[bot] <219655108+renovate-sh-app[bot]@users.noreply.github.com>
1 parent 83ad62d commit d445451

File tree

1 file changed

+5
-5
lines changed

1 file changed

+5
-5
lines changed

.github/workflows/periodic-zizmor.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -36,19 +36,19 @@ jobs:
3636

3737
steps:
3838
- name: Checkout
39-
uses: actions/checkout@v4
39+
uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4
4040
with:
4141
persist-credentials: false
4242

4343
- name: Get GitHub App Secrets
44-
uses: grafana/shared-workflows/actions/[email protected]
44+
uses: grafana/shared-workflows/actions/get-vault-secrets@5d7e361bc7e0a183cde8afe9899fb7b596d2659b # get-vault-secrets-v1.2.0
4545
with:
4646
common_secrets: |
4747
ZIZMOR_APP_ID=zizmor:app-id
4848
ZIZMOR_PRIVATE_KEY=zizmor:private-key
4949
5050
- name: Authenticate App With GitHub
51-
uses: actions/create-github-app-token@v2
51+
uses: actions/create-github-app-token@67018539274d69449ef7c02e8e71183d1719ab42 # v2
5252
id: get-token
5353
with:
5454
app-id: ${{ env.ZIZMOR_APP_ID }}
@@ -58,7 +58,7 @@ jobs:
5858
${{ matrix.repository.repo }}
5959
6060
- name: Checkout Target
61-
uses: actions/checkout@v4
61+
uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4
6262
with:
6363
repository: ${{ matrix.repository.owner }}/${{ matrix.repository.repo }}
6464
token: ${{ steps.get-token.outputs.token }}
@@ -141,7 +141,7 @@ jobs:
141141
print(f"Periodic zizmor scan finding: repo={item['repo']}, kind={item['kind']}, level={item['level']}, message={item['message']}, annotation={item['annotation']}, path={item['path']}, snippet={item['snippet']}, startLine={item['startLine']}, endLine={item['endLine']}, startColumn={item['startColumn']}, endColumn={item['endColumn']}")
142142
143143
- name: Upload SARIF results
144-
uses: actions/github-script@v7
144+
uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7
145145
env:
146146
OWNER: ${{ matrix.repository.owner }}
147147
REPO: ${{ matrix.repository.repo }}

0 commit comments

Comments
 (0)