From 019e9d4deb84e8e44b6ae4e78421ced2055fda60 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Fri, 22 Nov 2024 02:06:59 +0000 Subject: [PATCH] Update github-actions (#65) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/ci.yml | 10 +++++----- .github/workflows/codeql.yml | 8 ++++---- .github/workflows/scorecards.yml | 4 ++-- 3 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 020d736..cbb4e5b 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -12,7 +12,7 @@ jobs: name: Lint runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f with: disable-sudo: true egress-policy: block @@ -34,7 +34,7 @@ jobs: # Linting - name: Linting - uses: golangci/golangci-lint-action@02ee5067dca7bfdce7a74e00ec4acac190dead4e + uses: golangci/golangci-lint-action@160a1d779cee256901ff3d68ef8ccc63ac8a04f8 with: version: latest args: --config=./.github/.golangci.yml ./... @@ -48,7 +48,7 @@ jobs: matrix: go: [ '1.22', '1.21' ] steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f with: disable-sudo: true egress-policy: block @@ -75,7 +75,7 @@ jobs: name: Analyze runs-on: ubuntu-latest steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f with: disable-sudo: true egress-policy: block @@ -106,7 +106,7 @@ jobs: # Codecov - name: Codecov - uses: codecov/codecov-action@5c47607acb93fed5485fdbf7232e8a31425f672a + uses: codecov/codecov-action@015f24e6818733317a2da2edd6290ab26238649a env: CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }} with: diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 0643f93..197ac4f 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -23,7 +23,7 @@ jobs: fail-fast: false steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f with: disable-sudo: true egress-policy: block @@ -35,12 +35,12 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@a1695c562bbfa68dc5ab58c9b5e9f616b52bf5be + uses: github/codeql-action/init@f8e782af5670be7b12c0acb5b25c1c5703b931b9 with: languages: go - name: Autobuild - uses: github/codeql-action/autobuild@a1695c562bbfa68dc5ab58c9b5e9f616b52bf5be + uses: github/codeql-action/autobuild@f8e782af5670be7b12c0acb5b25c1c5703b931b9 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@a1695c562bbfa68dc5ab58c9b5e9f616b52bf5be + uses: github/codeql-action/analyze@f8e782af5670be7b12c0acb5b25c1c5703b931b9 diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index a34d7d0..c63aed4 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -22,7 +22,7 @@ jobs: id-token: write steps: - - uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 + - uses: step-security/harden-runner@0080882f6c36860b6ba35c610c98ce87d4e2f26f with: disable-sudo: true egress-policy: block @@ -69,6 +69,6 @@ jobs: # required for Code scanning alerts - name: "Upload SARIF results to code scanning" - uses: github/codeql-action/upload-sarif@a1695c562bbfa68dc5ab58c9b5e9f616b52bf5be + uses: github/codeql-action/upload-sarif@f8e782af5670be7b12c0acb5b25c1c5703b931b9 with: sarif_file: results.sarif