diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index c90ca9c..e9348b0 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -20,18 +20,18 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v6 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6 - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@c37a8b7cd97e31de3fcbd9d84c401870edeb8d34 # v3 with: languages: ${{ matrix.language }} queries: +security-and-quality - name: Autobuild - uses: github/codeql-action/autobuild@v3 + uses: github/codeql-action/autobuild@c37a8b7cd97e31de3fcbd9d84c401870edeb8d34 # v3 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@c37a8b7cd97e31de3fcbd9d84c401870edeb8d34 # v3 with: category: "/language:${{ matrix.language }}" diff --git a/.github/workflows/label_new_issues.yml b/.github/workflows/label_new_issues.yml index 42f1848..197e346 100644 --- a/.github/workflows/label_new_issues.yml +++ b/.github/workflows/label_new_issues.yml @@ -8,7 +8,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Add 'needs response' label to new issues - uses: actions-ecosystem/action-add-labels@v1 + uses: actions-ecosystem/action-add-labels@18f1af5e3544586314bbe15c0273249c770b2daf # v1 with: github_token: ${{ secrets.GITHUB_TOKEN }} labels: 'needs response' diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 14999bf..0fd31a6 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -28,9 +28,9 @@ jobs: pull-requests: write runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6 - name: Prepare the next main release - uses: Adyen/release-automation-action@v1.4.0 + uses: Adyen/release-automation-action@3e5694d5b365f344a62436e84049511ef318ecf5 # v1.4.0 with: token: ${{ secrets.ADYEN_AUTOMATION_BOT_ACCESS_TOKEN }} develop-branch: main diff --git a/.github/workflows/ruby.yml b/.github/workflows/ruby.yml index a6e9c70..9a99150 100644 --- a/.github/workflows/ruby.yml +++ b/.github/workflows/ruby.yml @@ -12,8 +12,8 @@ jobs: ruby: [2.7, '3.0', 3.1, 3.2, head] runs-on: ${{ matrix.os }} steps: - - uses: actions/checkout@v6 - - uses: ruby/setup-ruby@v1 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6 + - uses: ruby/setup-ruby@8a836efbcebe5de0fe86b48a775b7a31b5c70c93 # v1 with: ruby-version: ${{ matrix.ruby }} bundler-cache: true # runs 'bundle install' and caches installed gems automatically diff --git a/.github/workflows/rubygems_release.yml b/.github/workflows/rubygems_release.yml index 98478d1..28b792d 100644 --- a/.github/workflows/rubygems_release.yml +++ b/.github/workflows/rubygems_release.yml @@ -9,10 +9,10 @@ jobs: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v6 + - uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6 - name: Release Gem on RubyGems if: contains(github.ref, 'refs/tags/v') - uses: cadwallion/publish-rubygems-action@v1.1.0 + uses: cadwallion/publish-rubygems-action@94a6f4cd5350581749c569b5001eecc864e3ad0b # v1.1.0 env: GITHUB_TOKEN: ${{secrets.TOKEN_RUBYGEMS_RELEASES_WITH_EXPIRATION}} RUBYGEMS_API_KEY: ${{secrets.RUBYGEMS_API_KEY}} diff --git a/.github/workflows/stale.yml b/.github/workflows/stale.yml index 52bc65c..2320f72 100644 --- a/.github/workflows/stale.yml +++ b/.github/workflows/stale.yml @@ -7,7 +7,7 @@ jobs: stale: runs-on: ubuntu-latest steps: - - uses: actions/stale@v9 + - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9 with: repo-token: ${{ secrets.GITHUB_TOKEN }} stale-issue-message: 'This issue has been automatically marked as stale due to inactivity and will be closed in 7 days if no further activity occurs.'