Skip to content

Commit 37e6dba

Browse files
authored
ci: pinned action comments exact versions (#526)
Signed-off-by: Jan Kowalleck <jan.kowalleck@gmail.com>
1 parent 189373d commit 37e6dba

3 files changed

Lines changed: 40 additions & 40 deletions

File tree

.github/workflows/nodejs.yml

Lines changed: 23 additions & 23 deletions
Original file line numberDiff line numberDiff line change
@@ -34,12 +34,12 @@ jobs:
3434
steps:
3535
- name: Checkout
3636
# see https://github.com/actions/checkout
37-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
37+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
3838
with:
3939
persist-credentials: false
4040
- name: Setup Node.js ${{ env.NODE_ACTIVE_LTS }}
4141
# see https://github.com/actions/setup-node
42-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
42+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
4343
with:
4444
node-version: ${{ env.NODE_ACTIVE_LTS }}
4545
package-manager-cache: false
@@ -58,7 +58,7 @@ jobs:
5858
run: yarn run build:bundle-dev
5959
- name: artifact build result
6060
# see https://github.com/actions/upload-artifact
61-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
61+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
6262
with:
6363
name: ${{ env.BUNDLES_DIR }}
6464
path: ${{ env.BUNDLES_DIR }}
@@ -68,7 +68,7 @@ jobs:
6868
run: yarn run make-dist
6969
- name: artifact build result
7070
# see https://github.com/actions/upload-artifact
71-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
71+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
7272
with:
7373
name: ${{ env.DIST_DIR }}
7474
path: ${{ env.DIST_DIR }}
@@ -82,13 +82,13 @@ jobs:
8282
steps:
8383
- name: Checkout
8484
# see https://github.com/actions/checkout
85-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
85+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
8686
with:
8787
persist-credentials: false
8888
- run: mkdir -p ${{ env.REPORTS_DIR }}
8989
- name: Setup Node.js ${{ matrix.node-version }}
9090
# see https://github.com/actions/setup-node
91-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
91+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
9292
with:
9393
node-version: ${{ env.NODE_ACTIVE_LTS }}
9494
package-manager-cache: false
@@ -111,12 +111,12 @@ jobs:
111111
- name: Annotate Code
112112
if: ${{ failure() || success() }}
113113
# see https://github.com/DerLev/eslint-annotations
114-
uses: DerLev/eslint-annotations@a79ea65c1b45a649c48bcc6efc0103b6fd2e4c5f # v2
114+
uses: DerLev/eslint-annotations@a79ea65c1b45a649c48bcc6efc0103b6fd2e4c5f # v2.1.0
115115
with:
116116
eslint-report: ${{ env.REPORTS_DIR }}/eslint.json
117117
- name: artifact eslint result
118118
# see https://github.com/actions/upload-artifact
119-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
119+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
120120
if: ${{ failure() }}
121121
with:
122122
name: ${{ env.STANDARD_REPORTS_ARTIFACT }}
@@ -130,13 +130,13 @@ jobs:
130130
steps:
131131
- name: Checkout
132132
# see https://github.com/actions/checkout
133-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
133+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
134134
with:
135135
persist-credentials: false
136136
- run: mkdir -p ${{ env.REPORTS_DIR }}
137137
- name: Setup Node.js ${{ matrix.node-version }}
138138
# see https://github.com/actions/setup-node
139-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
139+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
140140
with:
141141
node-version: ${{ env.NODE_ACTIVE_LTS }}
142142
package-manager-cache: false
@@ -161,13 +161,13 @@ jobs:
161161
steps:
162162
- name: Checkout
163163
# see https://github.com/actions/checkout
164-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
164+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
165165
with:
166166
persist-credentials: false
167167
- run: mkdir -p ${{ env.REPORTS_DIR }}
168168
- name: Setup Node.js ${{ matrix.node-version }}
169169
# see https://github.com/actions/setup-node
170-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
170+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
171171
with:
172172
node-version: ${{ env.NODE_ACTIVE_LTS }}
173173
package-manager-cache: false
@@ -193,12 +193,12 @@ jobs:
193193
steps:
194194
- name: Checkout
195195
# see https://github.com/actions/checkout
196-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
196+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
197197
with:
198198
persist-credentials: false
199199
- name: fetch build artifact
200200
# see https://github.com/actions/download-artifact
201-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
201+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
202202
with:
203203
name: ${{ env.DIST_DIR }}
204204
path: ${{ env.DIST_DIR }}
@@ -238,12 +238,12 @@ jobs:
238238
steps:
239239
- name: Checkout
240240
# see https://github.com/actions/checkout
241-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
241+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
242242
with:
243243
persist-credentials: false
244244
- name: Setup Node.js ${{ matrix.node-version }}
245245
# see https://github.com/actions/setup-node
246-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
246+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
247247
with:
248248
node-version: ${{ matrix.node-version }}
249249
package-manager-cache: false
@@ -260,7 +260,7 @@ jobs:
260260
run: yarn run setup-tests
261261
- name: fetch build artifact
262262
# see https://github.com/actions/download-artifact
263-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
263+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
264264
with:
265265
name: ${{ env.BUNDLES_DIR }}
266266
path: ${{ env.BUNDLES_DIR }}
@@ -275,7 +275,7 @@ jobs:
275275
- name: artifact test reports
276276
if: ${{ ! cancelled() }}
277277
# see https://github.com/actions/upload-artifact
278-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
278+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
279279
with:
280280
name: '${{ env.TESTS_REPORTS_ARTIFACT }}_${{ matrix.os }}_node${{ matrix.node-version }}'
281281
path: ${{ env.REPORTS_DIR }}
@@ -310,12 +310,12 @@ jobs:
310310
steps:
311311
- name: Checkout
312312
# see https://github.com/actions/checkout
313-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
313+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
314314
with:
315315
persist-credentials: false
316316
- name: Setup Node.js ${{ matrix.node-version }}
317317
# see https://github.com/actions/setup-node
318-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
318+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
319319
with:
320320
node-version: ${{ matrix.node-version }}
321321
package-manager-cache: false
@@ -330,7 +330,7 @@ jobs:
330330
run: yarn install --no-immutable # we might be changing yarn version for tests -- require to ignore lock
331331
- name: fetch build artifact
332332
# see https://github.com/actions/download-artifact
333-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
333+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
334334
with:
335335
name: ${{ env.BUILD_DIR }}
336336
path: ${{ env.BUILD_DIR }}
@@ -348,7 +348,7 @@ jobs:
348348
steps:
349349
- name: fetch test artifacts
350350
# see https://github.com/actions/download-artifact
351-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
351+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
352352
with:
353353
pattern: '${{ env.TESTS_REPORTS_ARTIFACT }}_*'
354354
merge-multiple: true
@@ -359,7 +359,7 @@ jobs:
359359
## see https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#example-using-secrets
360360
if: ${{ env.CODACY_PROJECT_TOKEN != '' }}
361361
# see https://github.com/codacy/codacy-coverage-reporter-action
362-
uses: codacy/codacy-coverage-reporter-action@89d6c85cfafaec52c72b6c5e8b2878d33104c699 # v1
362+
uses: codacy/codacy-coverage-reporter-action@89d6c85cfafaec52c72b6c5e8b2878d33104c699 # v1.3.0
363363
with:
364364
project-token: ${{ env.CODACY_PROJECT_TOKEN }}
365365
coverage-reports: ${{ env.REPORTS_DIR }}/coverage/*/*

.github/workflows/release.yml

Lines changed: 16 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -43,7 +43,7 @@ jobs:
4343
steps:
4444
- name: Checkout
4545
# see https://github.com/actions/checkout
46-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
46+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
4747
with:
4848
ref: ${{ needs.bump.outputs.version }}
4949
fetch-depth: 0
@@ -57,7 +57,7 @@ jobs:
5757
git config --local user.name "${GITHUB_ACTOR}"
5858
- name: Setup Node.js ${{ env.NODE_ACTIVE_LTS }}
5959
# see https://github.com/actions/setup-node
60-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
60+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
6161
with:
6262
node-version: ${{ env.NODE_ACTIVE_LTS }}
6363
package-manager-cache: false
@@ -105,13 +105,13 @@ jobs:
105105
steps:
106106
- name: Checkout
107107
# see https://github.com/actions/checkout
108-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
108+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
109109
with:
110110
ref: ${{ needs.bump.outputs.version }}
111111
persist-credentials: false
112112
- name: Setup Node.js ${{ env.NODE_ACTIVE_LTS }}
113113
# see https://github.com/actions/setup-node
114-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
114+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
115115
with:
116116
node-version: ${{ env.NODE_ACTIVE_LTS }}
117117
package-manager-cache: false
@@ -128,7 +128,7 @@ jobs:
128128
run: yarn run build
129129
- name: artifact build result
130130
# see https://github.com/actions/upload-artifact
131-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
131+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
132132
with:
133133
name: ${{ env.BUNDLES_DIR }}
134134
path: ${{ env.BUNDLES_DIR }}
@@ -138,7 +138,7 @@ jobs:
138138
run: yarn run make-dist
139139
- name: artifact build result
140140
# see https://github.com/actions/upload-artifact
141-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
141+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
142142
with:
143143
name: ${{ env.DIST_DIR }}
144144
path: ${{ env.DIST_DIR }}
@@ -153,13 +153,13 @@ jobs:
153153
steps:
154154
- name: Checkout
155155
# see https://github.com/actions/checkout
156-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
156+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
157157
with:
158158
ref: ${{ needs.bump.outputs.version }}
159159
persist-credentials: false
160160
- name: fetch build artifact
161161
# see https://github.com/actions/download-artifact
162-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
162+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
163163
with:
164164
name: ${{ env.DIST_DIR }}
165165
path: ${{ env.DIST_DIR }}
@@ -178,13 +178,13 @@ jobs:
178178
steps:
179179
- name: Checkout
180180
# see https://github.com/actions/checkout
181-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
181+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
182182
with:
183183
ref: ${{ needs.bump.outputs.version }}
184184
persist-credentials: false
185185
- name: Setup Node.js ${{ env.NODE_ACTIVE_LTS }}
186186
# see https://github.com/actions/setup-node
187-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
187+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
188188
with:
189189
node-version: ${{ env.NODE_ACTIVE_LTS }}
190190
package-manager-cache: false
@@ -200,7 +200,7 @@ jobs:
200200
run: yarn run setup-tests
201201
- name: fetch build artifact
202202
# see https://github.com/actions/download-artifact
203-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
203+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
204204
with:
205205
name: ${{ env.BUNDLES_DIR }}
206206
path: ${{ env.BUNDLES_DIR }}
@@ -222,13 +222,13 @@ jobs:
222222
steps:
223223
- name: fetch build artifact
224224
# see https://github.com/actions/download-artifact
225-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
225+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
226226
with:
227227
name: ${{ env.DIST_DIR }}
228228
path: .
229229
- name: Setup Node.js ${{ env.NODE_ACTIVE_LTS }}
230230
# see https://github.com/actions/setup-node
231-
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6
231+
uses: actions/setup-node@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e # v6.4.0
232232
with:
233233
node-version: ${{ env.NODE_ACTIVE_LTS }}
234234
package-manager-cache: false
@@ -252,7 +252,7 @@ jobs:
252252
yarn pack --out "$PACKED_DIR"/%s-%v.tgz
253253
- name: artifact release result
254254
# see https://github.com/actions/upload-artifact
255-
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6
255+
uses: actions/upload-artifact@b7c566a772e6b6bfb58ed0dc250532a479d7789f # v6.0.0
256256
with:
257257
name: ${{ env.PACKED_DIR }}
258258
path: ${{ env.PACKED_DIR }}/
@@ -273,13 +273,13 @@ jobs:
273273
steps:
274274
- name: fetch packages
275275
# see https://github.com/actions/download-artifact
276-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
276+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
277277
with:
278278
name: ${{ env.PACKED_DIR }}
279279
path: ${{ env.PACKED_DIR }}
280280
- name: fetch dist
281281
# see https://github.com/actions/download-artifact
282-
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7
282+
uses: actions/download-artifact@37930b1c2abaa49bbe596cd826c3c89aef350131 # v7.0.0
283283
with:
284284
name: ${{ env.DIST_DIR }}
285285
path: ${{ env.DIST_DIR }}

.github/workflows/zizmor.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ jobs:
3030
steps:
3131
- name: Checkout
3232
# see https://github.com/actions/checkout
33-
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
33+
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
3434
with:
3535
persist-credentials: false
3636
- name: Run zizmor

0 commit comments

Comments
 (0)