Update github-actions (#54)

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
bytemare · Sep 27, 2024 · fc48f37 · fc48f37
1 parent 595b503
commit fc48f37
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 16 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -24,17 +24,17 @@ jobs:
             raw.githubusercontent.com:443
 
       - name: Checkout repo
-        uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938
         with:
           fetch-depth: 0
       - name: Setup Go
-        uses: actions/setup-go@df1a11710ed378b187f40c71eb3d6c08d82e7108
+        uses: actions/setup-go@d60b41a563a30eac31c3ec623e6ff0b3f16e1a06
         with:
           go-version-file: ./go.mod
 
       # Linting
       - name: Linting
-        uses: golangci/golangci-lint-action@06c3f3a5515ecb115aa8e1a90cbb3d4b3001936c
+        uses: golangci/golangci-lint-action@ebae5cee81ffe470becee7802f187bbbcd08e8c4
         with:
           version: latest
           args: --config=./.github/.golangci.yml ./...
@@ -59,11 +59,11 @@ jobs:
             sum.golang.org:443
 
       - name: Checkout repo
-        uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938
         with:
           fetch-depth: 0
       - name: Setup Go
-        uses: actions/setup-go@df1a11710ed378b187f40c71eb3d6c08d82e7108
+        uses: actions/setup-go@d60b41a563a30eac31c3ec623e6ff0b3f16e1a06
         with:
           go-version: ${{ matrix.go }}
 
@@ -92,11 +92,11 @@ jobs:
             storage.googleapis.com:443
 
       - name: Checkout repo
-        uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938
         with:
           fetch-depth: 0
       - name: Setup Go
-        uses: actions/setup-go@df1a11710ed378b187f40c71eb3d6c08d82e7108
+        uses: actions/setup-go@d60b41a563a30eac31c3ec623e6ff0b3f16e1a06
         with:
           go-version-file: ./go.mod
 
@@ -106,7 +106,7 @@ jobs:
 
       # Codecov
       - name: Codecov
-        uses: codecov/codecov-action@2296b6ba9eee85301a5ef2c7c2cdc738faf1f939
+        uses: codecov/codecov-action@543c3d42fc76502218ecdadc04e65dbd2640a67a
         env:
           CODECOV_TOKEN: ${{ secrets.CODECOV_TOKEN }}
         with:

diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -31,16 +31,16 @@ jobs:
             api.github.com:443 github.com:443 objects.githubusercontent.com:443 proxy.golang.org:443 storage.googleapis.com:443 sum.golang.org:443 uploads.github.com:443
 
       - name: Checkout repository
-        uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@323f5ef653b88011bf10e9a0a56d70d742463c9a
+        uses: github/codeql-action/init@46e0c78da9edf293aeab3d4d62cf1a7b7534c6a0
         with:
           languages: go
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@323f5ef653b88011bf10e9a0a56d70d742463c9a
+        uses: github/codeql-action/autobuild@46e0c78da9edf293aeab3d4d62cf1a7b7534c6a0
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@323f5ef653b88011bf10e9a0a56d70d742463c9a
+        uses: github/codeql-action/analyze@46e0c78da9edf293aeab3d4d62cf1a7b7534c6a0
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
@@ -38,12 +38,12 @@ jobs:
             www.bestpractices.dev:443
 
       - name: "Checkout code"
-        uses: actions/checkout@6d193bf28034eafb982f37bd894289fe649468fc
+        uses: actions/checkout@d632683dd7b4114ad314bca15554477dd762a938
         with:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@6c4912ed9e5f80cfda40164b92753f21f0892cab
+        uses: ossf/scorecard-action@72803a12483ed6f4f7c34f804818169f50162e37
         with:
           results_file: results.sarif
           results_format: sarif
@@ -61,14 +61,14 @@ jobs:
       # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
       # format to the repository Actions tab.
       - name: "Upload artifact"
-        uses: actions/upload-artifact@b18b1d32f3f31abcdc29dee3f2484801fe7822f4
+        uses: actions/upload-artifact@3eadd8b791cabf7cd572f194da82158c24125bd8
         with:
           name: SARIF file
           path: results.sarif
           retention-days: 5
 
       # required for Code scanning alerts
       - name: "Upload SARIF results to code scanning"
-        uses: github/codeql-action/upload-sarif@323f5ef653b88011bf10e9a0a56d70d742463c9a
+        uses: github/codeql-action/upload-sarif@46e0c78da9edf293aeab3d4d62cf1a7b7534c6a0
         with:
           sarif_file: results.sarif