[StepSecurity] ci: Harden GitHub Actions

[step-security-bot]

Summary

This pull request is created by StepSecurity at the request of @wneessen. Please merge the Pull Request to incorporate the requested changes. Please tag @wneessen on your message if you have any questions related to the PR.

Security Fixes

Pinned Dependencies

GitHub Action tags and Docker tags are mutable. This poses a security risk. GitHub's Security Hardening guide recommends pinning actions to full length commit.

• GitHub Security Guide
• The Open Source Security Foundation (OpenSSF) Security Guide

Feedback

For bug reports, feature requests, and general feedback; please email [email protected]. To create such PRs, please visit https://app.stepsecurity.io/securerepo.

Signed-off-by: StepSecurity Bot [email protected]

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 78.57%. Comparing base (c78388a) to head (d87e220).
Report is 10 commits behind head on main.

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #195      +/-   ##
==========================================
- Coverage   84.77%   78.57%   -6.21%     
==========================================
  Files          24       24              
  Lines        1806     1806              
==========================================
- Hits         1531     1419     -112     
- Misses        162      279     +117     
+ Partials      113      108       -5     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.