diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 1a6aed421..acec2e155 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -46,7 +46,7 @@ jobs: egress-policy: audit - name: Checkout repository - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index ee8c1c249..4df80eaec 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -22,6 +22,6 @@ jobs: egress-policy: audit - name: 'Checkout Repository' - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: 'Dependency Review' uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0 diff --git a/.github/workflows/dockerhub_promote_to_latest.yaml b/.github/workflows/dockerhub_promote_to_latest.yaml index 8de01966d..4f2bfe113 100644 --- a/.github/workflows/dockerhub_promote_to_latest.yaml +++ b/.github/workflows/dockerhub_promote_to_latest.yaml @@ -20,7 +20,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Set up QEMU uses: docker/setup-qemu-action@68827325e0b33c7199eb31dd4e31fbe9023e06e3 # v3.0.0 - name: Set up Docker Buildx diff --git a/.github/workflows/dockerhub_sshnpd.yml b/.github/workflows/dockerhub_sshnpd.yml index 1f7bf3c70..1346e5dcf 100644 --- a/.github/workflows/dockerhub_sshnpd.yml +++ b/.github/workflows/dockerhub_sshnpd.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Ensure version matches tag if: startsWith(github.ref, 'refs/tags/v') diff --git a/.github/workflows/end2end_tests.yaml b/.github/workflows/end2end_tests.yaml index b61e54b3d..aa7b4afd0 100644 --- a/.github/workflows/end2end_tests.yaml +++ b/.github/workflows/end2end_tests.yaml @@ -58,7 +58,7 @@ jobs: echo "np: ${{ matrix.np }}" echo "npd: ${{ matrix.npd }}" - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Setup Devicename # First two guarantee a unique # per workflow call @@ -213,7 +213,7 @@ jobs: echo "np: ${{ matrix.np }}" echo "npd: ${{ matrix.npd }}" - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Setup Devicename # First two guarantee a unique # per workflow call @@ -384,7 +384,7 @@ jobs: echo "np: ${{ matrix.np }}" echo "npd: ${{ matrix.npd }}" - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Setup Devicename # First two guarantee a unique # per workflow call @@ -522,7 +522,7 @@ jobs: if: ${{ github.event.pull_request.head.repo.fork == false && github.actor != 'dependabot[bot]'}} runs-on: ubuntu-latest steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Setup Devicename # First two guarantee a unique # per workflow call diff --git a/.github/workflows/multibuild.yaml b/.github/workflows/multibuild.yaml index 66c5ebeb3..48f2fbfae 100644 --- a/.github/workflows/multibuild.yaml +++ b/.github/workflows/multibuild.yaml @@ -22,7 +22,7 @@ jobs: output-name: sshnp-macos-x64 steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Ensure version matches tag if: startsWith(github.ref, 'refs/tags/v') @@ -71,7 +71,7 @@ jobs: - platform: linux/riscv64 output-name: sshnp-linux-riscv64 steps: - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Ensure version matches tag if: startsWith(github.ref, 'refs/tags/v') diff --git a/.github/workflows/prod_tests.yaml b/.github/workflows/prod_tests.yaml index 95e7a4d70..c41f84955 100644 --- a/.github/workflows/prod_tests.yaml +++ b/.github/workflows/prod_tests.yaml @@ -39,7 +39,7 @@ jobs: run: | echo "rvd: ${{ matrix.rvd }}" - - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 - name: Setup NP/NPD key env run: | diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index 30547c712..e1ab7fa2f 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -32,7 +32,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: persist-credentials: false diff --git a/.github/workflows/update_python_requirements.yaml b/.github/workflows/update_python_requirements.yaml index 1d2d98288..1ed871ede 100644 --- a/.github/workflows/update_python_requirements.yaml +++ b/.github/workflows/update_python_requirements.yaml @@ -15,7 +15,7 @@ jobs: steps: - name: Checkout this repo if: ${{ github.actor == 'dependabot[bot]' }} - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 + uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0 with: fetch-depth: 0 ref: ${{ github.event.pull_request.head.ref }}