From 07c061743f5222f0ba01e02b3c52fedc6c52464c Mon Sep 17 00:00:00 2001 From: Jakub Mucha Date: Wed, 6 Apr 2022 21:01:19 +0200 Subject: [PATCH] ci: update gh actions Signed-off-by: Jakub Mucha --- .github/workflows/audit_and_lint.yml | 10 +++++----- .github/workflows/codeql.yml | 6 +++--- .github/workflows/release.yml | 4 ++-- 3 files changed, 10 insertions(+), 10 deletions(-) diff --git a/.github/workflows/audit_and_lint.yml b/.github/workflows/audit_and_lint.yml index f0a8f1e91..937bec156 100644 --- a/.github/workflows/audit_and_lint.yml +++ b/.github/workflows/audit_and_lint.yml @@ -19,7 +19,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # pin@v2 + uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # pin@v2 - name: Audit dependencies run: npm audit --audit-level=critical @@ -41,13 +41,13 @@ jobs: steps: - name: Checkout - uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # pin@v2 + uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # pin@v2 - name: Set npm cache directory run: npm config set cache .npm-cache --global continue-on-error: true - - uses: actions/cache@4b0cf6cc4619e737324ddfcec08fff2413359514 # pin@v2 + - uses: actions/cache@136d96b4aee02b1f0de3ba493b1d47135042d9c0 # pin@v2 with: path: | .npm-cache @@ -72,7 +72,7 @@ jobs: - name: Upload lint results # run if lint failed and only on master/dev branch and pull requests if: always() && (github.ref == 'refs/heads/master' || github.ref == 'refs/heads/dev' || github.event_name == 'pull_request') - uses: github/codeql-action/upload-sarif@883476649888a9e8e219d5b2e6b789dc024f690c # pin@codeql-bundle-20210517 + uses: github/codeql-action/upload-sarif@81bfc289f5947eca8a3358341c874cb4f4697b64 # pin@codeql-bundle-20210517 with: sarif_file: lint-results.sarif continue-on-error: true @@ -98,7 +98,7 @@ jobs: # continue-on-error: true # - name: Cache node modules - # uses: actions/cache@4b0cf6cc4619e737324ddfcec08fff2413359514 # pin@v2 + # uses: actions/cache@136d96b4aee02b1f0de3ba493b1d47135042d9c0 # pin@v2 # with: # path: | # .npm-cache diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9a0f271f5..907969940 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -14,13 +14,13 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # pin@v2 + uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # pin@v2 - name: Initialize CodeQL - uses: github/codeql-action/init@883476649888a9e8e219d5b2e6b789dc024f690c + uses: github/codeql-action/init@81bfc289f5947eca8a3358341c874cb4f4697b64 with: queries: security-and-quality languages: javascript - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@883476649888a9e8e219d5b2e6b789dc024f690c + uses: github/codeql-action/analyze@81bfc289f5947eca8a3358341c874cb4f4697b64 diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 3afe36baf..7254f95f1 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -23,7 +23,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846 # pin@v2 + uses: actions/checkout@ec3a7ce113134d7a93b817d10a8272cb61118579 # pin@v2 with: fetch-depth: 0 ref: master @@ -32,7 +32,7 @@ jobs: run: npm config set cache .npm-cache --global continue-on-error: true - - uses: actions/cache@4b0cf6cc4619e737324ddfcec08fff2413359514 # pin@v2 + - uses: actions/cache@136d96b4aee02b1f0de3ba493b1d47135042d9c0 # pin@v2 with: path: | .npm-cache