From a99ae70b070f14fc93e3052855fb6d8c0f24314d Mon Sep 17 00:00:00 2001 From: "plural-renovate[bot]" Date: Sun, 2 Jun 2024 12:49:48 +0000 Subject: [PATCH] chore(deps): pin dependencies --- .github/workflows/release.yml | 24 ++++++++++++------------ Dockerfile | 2 +- 2 files changed, 13 insertions(+), 13 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6fdf7a49f2fb7f..6f8f7aa1c04abb 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -11,11 +11,11 @@ jobs: newTag: ${{ steps.version-bump.outputs.newTag }} steps: - name: Checkout code - uses: actions/checkout@v4.1.1 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 - name: Bump version id: version-bump - uses: phips28/gh-action-bump-version@v10.1.1 + uses: phips28/gh-action-bump-version@8967e27a4427b87c0071975df4b5e8500d0f63de # v10.1.1 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: @@ -28,13 +28,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4.1.1 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 with: fetch-depth: 0 - name: Docker meta id: meta - uses: docker/metadata-action@v4 + uses: docker/metadata-action@818d4b7b91585d195f67373fd9cb0332e31a7175 # v4 with: # list of Docker images to use as base name for tags images: | @@ -45,24 +45,24 @@ jobs: type=semver,pattern={{version}},value=${{ needs.bump.outputs.newTag }} - name: Set up QEMU - uses: docker/setup-qemu-action@v2 + uses: docker/setup-qemu-action@2b82ce82d56a2a04d2637cd93a637ae1b359c0a7 # v2 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 - name: Login to GHCR - uses: docker/login-action@v2 + uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc # v2 with: registry: ghcr.io username: ${{ github.repository_owner }} password: ${{ secrets.GITHUB_TOKEN }} - name: Login to Docker - uses: docker/login-action@v3 + uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3 with: username: mjgpluralsh password: ${{ secrets.DOCKER_ACCESS_TOKEN }} - name: Build and push - uses: docker/build-push-action@v3 + uses: docker/build-push-action@1104d471370f9806843c095c1db02b5a90c5f8b6 # v3 with: context: '.' file: './Dockerfile' @@ -78,18 +78,18 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4.1.1 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 with: fetch-depth: 0 - name: Create GitHub release - uses: softprops/action-gh-release@v0.1.15 + uses: softprops/action-gh-release@de2c0eb89ae2a093876385947365aca7b0e5f844 # v0.1.15 with: tag_name: ${{ needs.bump.outputs.newTag }} generate_release_notes: true - name: Push Chart to GHCR - uses: appany/helm-oci-chart-releaser@v0.3.0 + uses: appany/helm-oci-chart-releaser@bab2336e72a9e42cd69d99f3a8be4831b24100e3 # v0.3.0 with: name: plural-renovate repository: pluralsh diff --git a/Dockerfile b/Dockerfile index e660834f6b4f3e..8dee481761ac97 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM node:20.11.0-alpine3.19 AS base +FROM node:20.11.0-alpine3.19@sha256:2f46fd49c767554c089a5eb219115313b72748d8f62f5eccb58ef52bc36db4ad AS base # Enable yarn package manager RUN corepack enable