From e80b4eadd7318c548bf8828d2d92f67568c9c56b Mon Sep 17 00:00:00 2001 From: Yi Tao Date: Wed, 8 Jan 2025 14:43:19 +0800 Subject: [PATCH] pin 3rd party actions by hashes --- .github/workflows/golangci-lint.yml | 2 +- .github/workflows/integration-test-enterprise-nightly.yaml | 4 ++-- .github/workflows/integration-test-enterprise.yaml | 4 ++-- .github/workflows/integration-test-nightly.yaml | 2 +- .github/workflows/integration-test.yaml | 2 +- 5 files changed, 7 insertions(+), 7 deletions(-) diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index ac94ab51..6100d345 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -27,7 +27,7 @@ jobs: go-version-file: go.mod - run: | echo "YQ_VERSION=$(yq -r '.golangci-lint' < .tools_versions.yaml)" >> $GITHUB_ENV - - uses: golangci/golangci-lint-action@v6 + - uses: golangci/golangci-lint-action@971e284b6050e8a5849b72094c50ab08da042db8 # v6.1.1 with: # actions/setup-go@v5 introduced automatic cache handling so skip cache here skip-cache: true diff --git a/.github/workflows/integration-test-enterprise-nightly.yaml b/.github/workflows/integration-test-enterprise-nightly.yaml index 205e94e5..29d6054a 100644 --- a/.github/workflows/integration-test-enterprise-nightly.yaml +++ b/.github/workflows/integration-test-enterprise-nightly.yaml @@ -53,7 +53,7 @@ jobs: runs-on: ubuntu-latest steps: # This will set KONG_LINCENSE_DATA environment variable. - - uses: Kong/kong-license@master + - uses: Kong/kong-license@c4decf08584f84ff8fe8e7cd3c463e0192f6111b id: license_step with: password: ${{ secrets.PULP_PASSWORD }} @@ -69,7 +69,7 @@ jobs: - name: Run tests run: make test-coverage-enterprise - name: Upload Code Coverage - uses: codecov/codecov-action@v5.1.1 + uses: codecov/codecov-action@7f8b4b4bde536c465e797be725718b88c5d95e0e # v5.1.1 continue-on-error: true with: name: codecov-enterprise-nightly diff --git a/.github/workflows/integration-test-enterprise.yaml b/.github/workflows/integration-test-enterprise.yaml index ceed2e63..40c966cc 100644 --- a/.github/workflows/integration-test-enterprise.yaml +++ b/.github/workflows/integration-test-enterprise.yaml @@ -90,7 +90,7 @@ jobs: # to override: # Warning: Skip output 'license' since it may contain secret. # on Github Actions when setting a job output. - - uses: Kong/kong-license@master + - uses: Kong/kong-license@c4decf08584f84ff8fe8e7cd3c463e0192f6111b id: license_step with: password: ${{ secrets.PULP_PASSWORD }} @@ -106,7 +106,7 @@ jobs: - name: Run tests run: make test-coverage-enterprise - name: Upload Code Coverage - uses: codecov/codecov-action@v5.1.1 + uses: codecov/codecov-action@7f8b4b4bde536c465e797be725718b88c5d95e0e # v5.1.1 continue-on-error: true with: name: codecov-${{ matrix.kong_version }} diff --git a/.github/workflows/integration-test-nightly.yaml b/.github/workflows/integration-test-nightly.yaml index 2eb59ec6..a989ab18 100644 --- a/.github/workflows/integration-test-nightly.yaml +++ b/.github/workflows/integration-test-nightly.yaml @@ -44,7 +44,7 @@ jobs: - name: Run tests run: make test-coverage - name: Upload Code Coverage - uses: codecov/codecov-action@v5.1.1 + uses: codecov/codecov-action@7f8b4b4bde536c465e797be725718b88c5d95e0e # v5.1.1 continue-on-error: true with: name: codecov-nightly diff --git a/.github/workflows/integration-test.yaml b/.github/workflows/integration-test.yaml index ade7206e..26f34708 100644 --- a/.github/workflows/integration-test.yaml +++ b/.github/workflows/integration-test.yaml @@ -83,7 +83,7 @@ jobs: - name: Run tests run: make test-coverage - name: Upload Code Coverage - uses: codecov/codecov-action@v5.1.1 + uses: codecov/codecov-action@7f8b4b4bde536c465e797be725718b88c5d95e0e # v5.1.1 continue-on-error: true with: name: codecov-${{ matrix.kong_version }}