Pin third-party actions to commit SHAs

[kurtismash]

This PR pins third-party GitHub Actions to full commit SHAs for supply-chain security.

This has been done automatically by pinact. When reviewing please confirm that the SHAs are correct, zizmor will alert if not.

As a maintainer, please merge this PR once approved.

[TNA-Allan]

Confirmed the pinned SHAs are correct.

uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4.3.1
Verified commit page show tag like v4.3.1 attached to it.

uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 # v5.6.0
Verified commit page show tag like v5.6.0 attached to it (click on show more tags).

uses: snok/install-poetry@76e04a911780d5b312d89783f7b1cd627778900a # v1.4.1
Verified commit page show tag like v1.4.1 attached to it (click on show more tags).

uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4.3.0
Verified commit page show tag like v4.3.0 attached to it (click on show more tags).

uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4.4.0
Verified commit page show tag like v4.4.0 attached to it (click on show more tags).

uses: hadolint/hadolint-action@54c9adbab1582c2ef04b2016b760714a4bfde3cf # v3.1.0
Verified commit page show tag like v3.1.0 attached to it (click on show more tags).

uses: actions/github-script@211cb3fefb35a799baa5156f9321bb774fe56294 # v5.2.0
Verified commit page show tag like v5.2.0 attached to it (click on show more tags).

uses: actions/checkout@ee0669bd1cc54295c223e0bb666b733df41de1c5 # v2.7.0
Verified commit page show v2.7.0 attached to it

uses: actions/setup-python@e9aba2c848f5ebd159c070c61ea2c4e2b122355e # v2.3.4
Verified commit page show tag like v2.3.4 attached to it.

uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1
Verified commit page show tag like v7.0.1 attached to it (click on show more tags).

[TNA-Allan]

Following discussion in dev catch-up, I’ve reviewed this PR and will proceed with approval/merge.