diff --git a/.github/actions/manager-image/action.yaml b/.github/actions/manager-image/action.yaml index 86ce3816b..600a723b4 100644 --- a/.github/actions/manager-image/action.yaml +++ b/.github/actions/manager-image/action.yaml @@ -44,7 +44,7 @@ runs: # Import GitHub's cache build to docker cache - name: Copy Caph Golang cache to docker cache - uses: docker/build-push-action@31159d49c0d4756269a0940a750801a1ea5d7003 # v6.1.0 + uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6.2.0 with: provenance: false context: /tmp/.cache/caph @@ -54,7 +54,7 @@ runs: target: import-cache - name: Build and push manager image - uses: docker/build-push-action@31159d49c0d4756269a0940a750801a1ea5d7003 # v6 + uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6 with: provenance: false context: . diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 4297888db..f56beec55 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -88,7 +88,7 @@ jobs: # Import GitHub's cache build to docker cache - name: Copy Caph Golang cache to docker cache - uses: docker/build-push-action@31159d49c0d4756269a0940a750801a1ea5d7003 # v6.1.0 + uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6.2.0 with: provenance: false context: /tmp/.cache/caph @@ -98,7 +98,7 @@ jobs: target: import-cache - name: Build and push manager image - uses: docker/build-push-action@31159d49c0d4756269a0940a750801a1ea5d7003 # v6 + uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6 id: docker_build_release with: provenance: false @@ -150,7 +150,7 @@ jobs: # Store docker's golang's cache build locally only on the main branch - name: Store Caph Golang cache build locally if: ${{ steps.cache.outputs.cache-hit != 'true' }} - uses: docker/build-push-action@31159d49c0d4756269a0940a750801a1ea5d7003 # v6.1.0 + uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6.2.0 with: provenance: false context: . diff --git a/.github/workflows/pr-verify.yml b/.github/workflows/pr-verify.yml index bebe86754..ed7369f8c 100644 --- a/.github/workflows/pr-verify.yml +++ b/.github/workflows/pr-verify.yml @@ -42,7 +42,7 @@ jobs: done - name: Generate Token - uses: actions/create-github-app-token@c8f55efbd427e7465d6da1106e7979bc8aaee856 # v1 + uses: actions/create-github-app-token@31c86eb3b33c9b601a1f60f98dcbfd1d70f379b4 # v1 id: generate-token with: app-id: ${{ secrets.SYSELF_APP_ID }} diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index d584197cb..ebaaf2666 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -60,7 +60,7 @@ jobs: echo 'EOF' >> $GITHUB_ENV - name: Build and push manager image - uses: docker/build-push-action@31159d49c0d4756269a0940a750801a1ea5d7003 # v6 + uses: docker/build-push-action@15560696de535e4014efeff63c48f16952e52dd1 # v6 id: docker_build_release with: provenance: false diff --git a/.github/workflows/schedule-update-bot.yaml b/.github/workflows/schedule-update-bot.yaml index 35a0f9c02..292cbd711 100644 --- a/.github/workflows/schedule-update-bot.yaml +++ b/.github/workflows/schedule-update-bot.yaml @@ -33,7 +33,7 @@ jobs: uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: Generate Token - uses: actions/create-github-app-token@c8f55efbd427e7465d6da1106e7979bc8aaee856 # v1 + uses: actions/create-github-app-token@31c86eb3b33c9b601a1f60f98dcbfd1d70f379b4 # v1 id: generate-token with: app-id: ${{ secrets.SYSELF_APP_ID }} diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 17a97aa11..8f485f045 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -59,7 +59,7 @@ jobs: run: make report-cover-html report-cover-treemap - name: Test Summary - uses: test-summary/action@032c8a9cec6aaa3c20228112cae6ca10a3b29336 # v2.3 + uses: test-summary/action@31493c76ec9e7aa675f1585d3ed6f1da69269a86 # v2.4 with: paths: ".coverage/junit.xml"