|
19 | 19 | runs-on: ubuntu-24.04 |
20 | 20 | steps: |
21 | 21 | - name: "Checkout Code" |
22 | | - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 |
| 22 | + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 |
23 | 23 | - name: Check secret |
24 | 24 | id: checksecret |
25 | 25 | uses: ./.github/actions/exists |
@@ -47,12 +47,12 @@ jobs: |
47 | 47 | contents: read |
48 | 48 | steps: |
49 | 49 | - name: Checkout Source |
50 | | - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 |
| 50 | + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 |
51 | 51 | - uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0 |
52 | 52 | with: |
53 | 53 | go-version-file: 'go.mod' |
54 | 54 | - name: Run Gosec Security Scanner |
55 | | - uses: securego/gosec@4a3bd8af174872c778439083ded7adbf3747e770 # v2.26.1 |
| 55 | + uses: securego/gosec@9e6a9843d7a4a6e3e9a8539b02612c8a4aa3f889 # v2.27.1 |
56 | 56 | with: |
57 | 57 | args: '-no-fail -fmt sarif -out gosec.sarif ./...' |
58 | 58 | - name: Upload SARIF file |
|
64 | 64 | runs-on: ubuntu-24.04 |
65 | 65 | steps: |
66 | 66 | - name: Checkout |
67 | | - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 |
| 67 | + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 |
68 | 68 | - uses: actions/setup-go@4a3601121dd01d1626a1e23e37211e3254c1c06c # v6.4.0 |
69 | 69 | with: |
70 | 70 | go-version-file: 'go.mod' |
|
77 | 77 | value: ${{ secrets.CODECOV_TOKEN }} |
78 | 78 | - name: Upload Report to Codecov |
79 | 79 | if: ${{ steps.checksecret.outputs.result == 'true' }} |
80 | | - uses: codecov/codecov-action@e79a6962e0d4c0c17b229090214935d2e33f8354 # v6.0.1 |
| 80 | + uses: codecov/codecov-action@fb8b3582c8e4def4969c97caa2f19720cb33a72f # v6.0.2 |
81 | 81 | with: |
82 | 82 | token: ${{ secrets.CODECOV_TOKEN }} |
83 | 83 | slug: projectcapsule/capsule-proxy |
|
0 commit comments