diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 97f6133..a158a9f 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -51,7 +51,7 @@ jobs: - name: Upload patch if: steps.self_mutation.outputs.self_mutation_happened - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v4.4.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v4.4.0 with: name: repo.patch path: repo.patch diff --git a/.github/workflows/scorecard-analysis.yml b/.github/workflows/scorecard-analysis.yml index 4863293..c5e1438 100644 --- a/.github/workflows/scorecard-analysis.yml +++ b/.github/workflows/scorecard-analysis.yml @@ -40,7 +40,7 @@ jobs: # uploads of run results in SARIF format to the repository Actions tab. # https://docs.github.com/en/actions/advanced-guides/storing-workflow-data-as-artifacts - name: "Upload artifact" - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: SARIF file path: scorecard-results.sarif diff --git a/.github/workflows/security-scanners.yml b/.github/workflows/security-scanners.yml index 43cb038..b9e873c 100644 --- a/.github/workflows/security-scanners.yml +++ b/.github/workflows/security-scanners.yml @@ -51,7 +51,7 @@ jobs: set -e echo "exit_code=$GITLEAKS_EXIT" >> "$GITHUB_OUTPUT" exit 0 - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: gitleaks.sarif @@ -90,7 +90,7 @@ jobs: set -e echo "exit_code=$BANDIT_EXIT" >> "$GITHUB_OUTPUT" exit 0 - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: bandit.sarif @@ -124,7 +124,7 @@ jobs: set -e echo "exit_code=$GRYPE_EXIT" >> "$GITHUB_OUTPUT" exit 0 - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: grype.sarif @@ -164,7 +164,7 @@ jobs: set -e echo "exit_code=$CHECKOV_EXIT" >> "$GITHUB_OUTPUT" exit 0 - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: checkov.sarif @@ -283,7 +283,7 @@ jobs: else . end ] ' semgrep-report_sarif.json > semgrep.sarif.tmp.json && mv semgrep.sarif.tmp.json semgrep-report_sarif.json - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 with: name: semgrep.sarif path: semgrep-report_sarif.json @@ -328,7 +328,7 @@ jobs: clamdscan --version - run: | clamdscan --verbose --log=clamdscan.txt --stream --fdpass --multiscan . - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: clamdscan.txt @@ -429,7 +429,7 @@ jobs: --url 'http://localhost:9000/api/issues/search?componentKeys=my-project&ps=500&p=1' \ --header 'Authorization: Bearer ${{ env.SONAR_TOKEN }}' | tee sonar-issues.json | jq || exit 1 - - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0 + - uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7.0.1 if: always() with: name: sonar-issues.json diff --git a/.github/workflows/upgrade-main.yml b/.github/workflows/upgrade-main.yml index 633cbdf..b6afeb9 100644 --- a/.github/workflows/upgrade-main.yml +++ b/.github/workflows/upgrade-main.yml @@ -57,7 +57,7 @@ jobs: - name: Upload patch if: steps.create_patch.outputs.patch_created - uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v4.4.0 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v4.4.0 with: name: repo.patch path: repo.patch