From 02fbc1bb922e1e6865ac2423ee7904d1537eecf5 Mon Sep 17 00:00:00 2001 From: Patrick Linnane Date: Thu, 12 Dec 2024 20:19:35 -0800 Subject: [PATCH 1/3] workflows/actionlint: use full versions Signed-off-by: Patrick Linnane --- .github/workflows/actionlint.yml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/actionlint.yml b/.github/workflows/actionlint.yml index 5d9768f9..48fd5c37 100644 --- a/.github/workflows/actionlint.yml +++ b/.github/workflows/actionlint.yml @@ -42,14 +42,14 @@ jobs: - name: Install tools run: brew install actionlint shellcheck zizmor - - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false - run: zizmor --format sarif . > results.sarif - name: Upload SARIF file - uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4 + uses: actions/upload-artifact@b4b15b8c7c6ac21ea08fcf65892d2ee8f75cf882 # v4.4.3 with: name: results.sarif path: results.sarif @@ -73,13 +73,13 @@ jobs: security-events: write steps: - name: Download SARIF file - uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: results.sarif path: results.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@babb554ede22fd5605947329c4d04d8e7a0b8155 # v3 + uses: github/codeql-action/upload-sarif@babb554ede22fd5605947329c4d04d8e7a0b8155 # v3.27.9 with: sarif_file: results.sarif category: zizmor From 5154f014a5c9935e274dc38516ff2b8fb94162e9 Mon Sep 17 00:00:00 2001 From: Patrick Linnane Date: Thu, 12 Dec 2024 20:22:59 -0800 Subject: [PATCH 2/3] workflows/stale-issues: use full versions Signed-off-by: Patrick Linnane --- .github/workflows/stale-issues.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/stale-issues.yml b/.github/workflows/stale-issues.yml index ba2621be..608d2e65 100644 --- a/.github/workflows/stale-issues.yml +++ b/.github/workflows/stale-issues.yml @@ -38,7 +38,7 @@ jobs: pull-requests: write steps: - name: Mark/Close Stale Issues and Pull Requests - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9 + uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9.0.0 with: repo-token: ${{ secrets.GITHUB_TOKEN }} days-before-stale: 21 @@ -68,7 +68,7 @@ jobs: pull-requests: write steps: - name: Mark/Close Stale `bump-formula-pr` and `bump-cask-pr` Pull Requests - uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9 + uses: actions/stale@28ca1036281a5e5922ead5184a1bbf96e5fc984e # v9.0.0 with: repo-token: ${{ secrets.GITHUB_TOKEN }} days-before-stale: 2 From 7fa9629a8b5036019c083d96dc691c0622a117a0 Mon Sep 17 00:00:00 2001 From: Patrick Linnane Date: Thu, 12 Dec 2024 20:23:11 -0800 Subject: [PATCH 3/3] workflows/sync-shared-config: use full versions Signed-off-by: Patrick Linnane --- .github/workflows/sync-shared-config.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/sync-shared-config.yml b/.github/workflows/sync-shared-config.yml index 81408d4d..9e3e59ad 100644 --- a/.github/workflows/sync-shared-config.yml +++ b/.github/workflows/sync-shared-config.yml @@ -62,7 +62,7 @@ jobs: uses: Homebrew/actions/setup-homebrew@master - name: Clone source repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false @@ -77,7 +77,7 @@ jobs: HOMEBREW_DEVELOPER: 1 - name: Clone target repository - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: repository: ${{ matrix.repo }} path: target/${{ matrix.repo }}