diff --git a/.github/workflows/changelog.yml b/.github/workflows/changelog.yml index 96c9ee1c..7cf7dbd6 100644 --- a/.github/workflows/changelog.yml +++ b/.github/workflows/changelog.yml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check out code - uses: actions/checkout@v4 + uses: actions/checkout@v4.2.2 with: fetch-depth: 0 token: ${{ secrets.BOT_PAT }} diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml index c0cc4257..5b6aa030 100644 --- a/.github/workflows/checkov.yml +++ b/.github/workflows/checkov.yml @@ -16,7 +16,7 @@ jobs: actions: read runs-on: ubuntu-latest steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@v4.2.2 - name: Checkov GitHub Action uses: bridgecrewio/checkov-action@v12 with: diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 2bddf911..ae830616 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -17,7 +17,7 @@ jobs: contents: read steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@v4.2.2 - name: Initialize CodeQL uses: github/codeql-action/init@v3 - name: Perform CodeQL Analysis diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 509c19d7..9a9c023b 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -9,6 +9,6 @@ jobs: runs-on: ubuntu-latest steps: - name: 'Checkout Repository' - uses: actions/checkout@v4 + uses: actions/checkout@v4.2.2 - name: 'Dependency Review' uses: actions/dependency-review-action@v4 \ No newline at end of file diff --git a/.github/workflows/docs.yml b/.github/workflows/docs.yml index 761cf8b8..cb01ff3f 100644 --- a/.github/workflows/docs.yml +++ b/.github/workflows/docs.yml @@ -46,7 +46,7 @@ jobs: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v4.2.2 with: fetch-depth: 0 ref: ${{ inputs.git_ref }} diff --git a/.github/workflows/jenkins-deployment.yml b/.github/workflows/jenkins-deployment.yml index 72fdbcf2..6e1fee7c 100644 --- a/.github/workflows/jenkins-deployment.yml +++ b/.github/workflows/jenkins-deployment.yml @@ -39,7 +39,7 @@ jobs: aws-region: ${{ vars.AWS_REGION }} # Checkout Repository - name: Checkout Git Repository - uses: actions/checkout@v3.0.0 + uses: actions/checkout@v4.2.2 with: ref: ${{ github.ref }} # Install Terraform @@ -103,7 +103,7 @@ jobs: steps: # Checkout Repository - name: Checkout Git Repository - uses: actions/checkout@v3.0.0 + uses: actions/checkout@v4.2.2 with: ref: ${{ github.ref }} # Retrieve necessary AWS permissions @@ -150,7 +150,7 @@ jobs: steps: # Checkout Repository - name: Checkout Git Repository - uses: actions/checkout@v3.0.0 + uses: actions/checkout@v4.2.2 with: ref: ${{ github.ref }} # Retrieve necessary AWS permissions diff --git a/.github/workflows/ossf_scorecard.yml b/.github/workflows/ossf_scorecard.yml index 6961cc9e..514d64ca 100644 --- a/.github/workflows/ossf_scorecard.yml +++ b/.github/workflows/ossf_scorecard.yml @@ -17,7 +17,7 @@ jobs: actions: read # Uncomment the permissions if installing in a private repository. steps: - name: "Checkout code" - uses: actions/checkout@a5ac7e51b41094c92402da3b24376905380afc29 # v4.1.6 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false - name: "Run analysis" diff --git a/.github/workflows/trivy.yml b/.github/workflows/trivy.yml index 012aa10a..27197f38 100644 --- a/.github/workflows/trivy.yml +++ b/.github/workflows/trivy.yml @@ -17,7 +17,7 @@ jobs: contents: read steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@v4.2.2 - name: Run Trivy vulnerability scanner in repo mode uses: aquasecurity/trivy-action@0.28.0 with: