From efbf627dbd0081ef10f915d20d75b2c1299272cb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 3 Jul 2024 15:27:51 +0000 Subject: [PATCH] github-actions: bump actions/checkout from 3.6.0 to 4.1.7 Bumps [actions/checkout](https://github.com/actions/checkout) from 3.6.0 to 4.1.7. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v3.6.0...692973e3d937129bcbf40652eb9f2f61becf3332) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- .github/workflows/authors.yml | 2 +- .github/workflows/builds.yml | 70 +++++++++++------------ .github/workflows/codeql.yml | 2 +- .github/workflows/commits.yml | 2 +- .github/workflows/docs.yml | 2 +- .github/workflows/formatting.yml | 2 +- .github/workflows/prepare-deps.yml | 2 +- .github/workflows/rust-checks.yml | 4 +- .github/workflows/rust.yml | 2 +- .github/workflows/scan-build.yml | 2 +- .github/workflows/scorecards-analysis.yml | 2 +- 11 files changed, 46 insertions(+), 46 deletions(-) diff --git a/.github/workflows/authors.yml b/.github/workflows/authors.yml index 6a07610d55d2..bddadc64fc57 100644 --- a/.github/workflows/authors.yml +++ b/.github/workflows/authors.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout PR code - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 with: ref: ${{ github.event.pull_request.head.sha }} fetch-depth: 0 diff --git a/.github/workflows/builds.yml b/.github/workflows/builds.yml index 25459bb23a71..68041ae87e80 100644 --- a/.github/workflows/builds.yml +++ b/.github/workflows/builds.yml @@ -139,7 +139,7 @@ jobs: texlive-capt-of \ texlive-needspace - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata # Download and extract dependency archives created during prep @@ -281,7 +281,7 @@ jobs: - run: rustup component add rustfmt - run: rustup component add clippy - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata # Download and extract dependency archives created during prep @@ -444,7 +444,7 @@ jobs: which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata # Prebuild check for duplicate SIDs @@ -644,7 +644,7 @@ jobs: - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain 1.63.0 -y - run: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -739,7 +739,7 @@ jobs: sudo \ which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -832,7 +832,7 @@ jobs: sudo \ which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -931,7 +931,7 @@ jobs: sudo \ which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1021,7 +1021,7 @@ jobs: sudo \ which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1106,7 +1106,7 @@ jobs: which \ zlib-devel - run: adduser suricata - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1198,7 +1198,7 @@ jobs: sudo \ which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1251,14 +1251,14 @@ jobs: dnf config-manager --set-enabled crb - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 - name: Install minimal dependencies run: ./scripts/docs-almalinux9-minimal-build.sh - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1326,7 +1326,7 @@ jobs: software-properties-common \ zlib1g \ zlib1g-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1402,7 +1402,7 @@ jobs: # packaged Rust version is too old for coverage, so get from rustup - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain 1.63.0 -y - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -1531,7 +1531,7 @@ jobs: # specific version to match up to the llvm version in ubuntu below - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain 1.63.0 -y - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 with: @@ -1646,7 +1646,7 @@ jobs: # specific version to match up to the llvm version in ubuntu below - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain 1.63.0 -y - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 with: @@ -1790,7 +1790,7 @@ jobs: time \ wget \ dpdk-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 with: @@ -1878,7 +1878,7 @@ jobs: time \ wget \ dpdk-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 with: @@ -1981,7 +1981,7 @@ jobs: # packaged Rust version is too old for coverage, so get from rustup - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain 1.63.0 -y - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2081,7 +2081,7 @@ jobs: zlib1g-dev \ exuberant-ctags \ dpdk-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2240,7 +2240,7 @@ jobs: zlib1g \ zlib1g-dev \ exuberant-ctags - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2327,7 +2327,7 @@ jobs: zlib1g \ zlib1g-dev - run: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2408,7 +2408,7 @@ jobs: linux-headers-$(uname -r) - name: Checkout Netmap repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 with: repository: luigirizzo/netmap # gets cloned to $GITHUB_WORKSPACE/netmap/ @@ -2421,7 +2421,7 @@ jobs: make -j ${{ env.CPUS }} sudo make install - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2465,7 +2465,7 @@ jobs: git \ libtool - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@c850b930e6ba138125429b7e5c93fc707a7f8427 with: @@ -2566,7 +2566,7 @@ jobs: ninja -C build install ldconfig cd $HOME - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2655,7 +2655,7 @@ jobs: texlive-latex-extra \ zlib1g \ zlib1g-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2741,7 +2741,7 @@ jobs: texlive-latex-extra \ zlib1g \ zlib1g-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2822,7 +2822,7 @@ jobs: texlive-latex-extra \ zlib1g \ zlib1g-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2910,7 +2910,7 @@ jobs: - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain $RUST_VERSION_KNOWN -y - run: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -2989,7 +2989,7 @@ jobs: - name: Install Rust run: curl https://sh.rustup.rs -sSf | sh -s -- --default-toolchain $RUST_VERSION_KNOWN -y - run: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -3049,7 +3049,7 @@ jobs: - name: Install cbindgen run: cargo install --debug --version 0.24.3 cbindgen - run: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - name: Downloading prep archive uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e @@ -3092,7 +3092,7 @@ jobs: # preinstalled one to be picked up by configure - name: cbindgen run: cargo install --root /usr --force --debug --version 0.24.3 cbindgen - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -3148,7 +3148,7 @@ jobs: # preinstalled one to be picked up by configure - name: cbindgen run: cargo install --root /usr --force --debug --version 0.24.3 cbindgen - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: @@ -3192,7 +3192,7 @@ jobs: # preinstalled one to be picked up by configure - name: cbindgen run: cargo install --root /usr --force --debug --version 0.24.3 cbindgen - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index b1eaf238d294..aab22b761a9b 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -37,7 +37,7 @@ jobs: # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ] steps: - name: Checkout repository - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/commits.yml b/.github/workflows/commits.yml index 5a5a7b1fd38f..5335badcfb78 100644 --- a/.github/workflows/commits.yml +++ b/.github/workflows/commits.yml @@ -74,7 +74,7 @@ jobs: cd $HOME/.cargo/bin curl -OL https://github.com/eqrion/cbindgen/releases/download/v0.24.3/cbindgen chmod 755 cbindgen - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 with: fetch-depth: 0 # The action above is supposed to do this for us, but it doesn't appear to stick. diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 233f75f54d29..56e589fee90a 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -91,7 +91,7 @@ jobs: texlive-latex-extra \ zlib1g \ zlib1g-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e with: diff --git a/.github/workflows/formatting.yml b/.github/workflows/formatting.yml index 4758b1af4413..b66b82283ac3 100644 --- a/.github/workflows/formatting.yml +++ b/.github/workflows/formatting.yml @@ -89,7 +89,7 @@ jobs: # My patience simply ran too short to keep on looking. See follow-on # action to manually fix this up. - name: Checkout - might be merge commit! - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 with: fetch-depth: 0 # Use last commit of branch, not potential merge commit! diff --git a/.github/workflows/prepare-deps.yml b/.github/workflows/prepare-deps.yml index 9cd95dc9b665..adafa506333f 100644 --- a/.github/workflows/prepare-deps.yml +++ b/.github/workflows/prepare-deps.yml @@ -78,7 +78,7 @@ jobs: # Now checkout Suricata for the bundle script. - name: Checking out Suricata - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - name: Fetching libhtp diff --git a/.github/workflows/rust-checks.yml b/.github/workflows/rust-checks.yml index ac9b9bb3ead4..e4bc30eff26b 100644 --- a/.github/workflows/rust-checks.yml +++ b/.github/workflows/rust-checks.yml @@ -80,7 +80,7 @@ jobs: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - name: Install Cargo Audit run: cargo install cargo-audit - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - name: Configure Suricata run: | ./scripts/bundle.sh libhtp @@ -158,7 +158,7 @@ jobs: sudo \ which \ zlib-devel - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - name: Install Minimum Supported Rust Version run: | curl https://sh.rustup.rs -sSf | sh -s -- -y --default-toolchain $(awk -F '"' '/rust-version/ { print $2 }' rust/Cargo.toml.in) diff --git a/.github/workflows/rust.yml b/.github/workflows/rust.yml index 7807662d5e9b..c5ca8fd1da3f 100644 --- a/.github/workflows/rust.yml +++ b/.github/workflows/rust.yml @@ -71,7 +71,7 @@ jobs: echo "$HOME/.cargo/bin" >> $GITHUB_PATH - name: Install cbindgen run: cargo install --debug cbindgen - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - run: ./scripts/bundle.sh - run: ./autogen.sh diff --git a/.github/workflows/scan-build.yml b/.github/workflows/scan-build.yml index 3ca1e834dcb9..b5ff33b92509 100644 --- a/.github/workflows/scan-build.yml +++ b/.github/workflows/scan-build.yml @@ -67,7 +67,7 @@ jobs: software-properties-common \ zlib1g \ zlib1g-dev - - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 + - uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 - run: git config --global --add safe.directory /__w/suricata/suricata - run: ./scripts/bundle.sh - run: ./autogen.sh diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml index ec5e860985fc..f54c94bd537d 100644 --- a/.github/workflows/scorecards-analysis.yml +++ b/.github/workflows/scorecards-analysis.yml @@ -25,7 +25,7 @@ jobs: steps: - name: "Checkout code" - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@692973e3d937129bcbf40652eb9f2f61becf3332 # v4.1.7 - name: "Run analysis" uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3