diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index d19d5ef..abde0b4 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -17,4 +17,4 @@ jobs: name: CodeQL Analysis permissions: security-events: write - uses: fish-shop/workflows/.github/workflows/codeql-analysis.yml@a1ca097199775dd72af261d4c5b03e3e3720b461 # v1.14.1 + uses: fish-shop/workflows/.github/workflows/codeql-analysis.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 423b3aa..9a8f90d 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -11,4 +11,4 @@ jobs: name: Dependency Review permissions: pull-requests: write - uses: fish-shop/workflows/.github/workflows/dependency-review.yml@a1ca097199775dd72af261d4c5b03e3e3720b461 # v1.14.1 + uses: fish-shop/workflows/.github/workflows/dependency-review.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml index 42a180c..54d6202 100644 --- a/.github/workflows/gitleaks.yml +++ b/.github/workflows/gitleaks.yml @@ -14,6 +14,6 @@ jobs: name: Gitleaks SAST scan permissions: pull-requests: write - uses: fish-shop/workflows/.github/workflows/gitleaks.yml@a1ca097199775dd72af261d4c5b03e3e3720b461 # v1.14.1 + uses: fish-shop/workflows/.github/workflows/gitleaks.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 secrets: gitleaks_license: ${secrets.GITLEAKS_LICENSE} diff --git a/.github/workflows/markdown-links.yml b/.github/workflows/markdown-links.yml index 3fd3601..6b25a10 100644 --- a/.github/workflows/markdown-links.yml +++ b/.github/workflows/markdown-links.yml @@ -11,4 +11,4 @@ jobs: name: Markdown Links Check permissions: pull-requests: write - uses: fish-shop/workflows/.github/workflows/markdown-links.yml@a1ca097199775dd72af261d4c5b03e3e3720b461 # v1.14.1 + uses: fish-shop/workflows/.github/workflows/markdown-links.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml index 15ff3b9..ad41eb7 100644 --- a/.github/workflows/openssf-scorecard.yml +++ b/.github/workflows/openssf-scorecard.yml @@ -14,4 +14,4 @@ jobs: permissions: security-events: write # Needed to upload the results to code scanning dashboard id-token: write # Needed to publish results to OpenSSF API and get a badge - uses: fish-shop/workflows/.github/workflows/openssf-scorecard.yml@a1ca097199775dd72af261d4c5b03e3e3720b461 # v1.14.1 + uses: fish-shop/workflows/.github/workflows/openssf-scorecard.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 diff --git a/.github/workflows/release-tags.yml b/.github/workflows/release-tags.yml index b3a3a37..04e0363 100644 --- a/.github/workflows/release-tags.yml +++ b/.github/workflows/release-tags.yml @@ -11,4 +11,4 @@ jobs: name: Release Tags permissions: contents: write - uses: fish-shop/workflows/.github/workflows/release-tags.yml@a1ca097199775dd72af261d4c5b03e3e3720b461 # v1.14.1 + uses: fish-shop/workflows/.github/workflows/release-tags.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 111d106..f8b0402 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -30,13 +30,13 @@ jobs: runs-on: ${{ matrix.os }} steps: - name: Harden runner - uses: step-security/harden-runner@fe104658747b27e96e4f7e80cd0a94068e53901d # v2.16.1 + uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0 with: egress-policy: audit - name: Checkout repository uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Install fish shell - uses: fish-shop/install-fish-shell@e4a328dcd2074add0c22a36aa2792b889e24f637 # v2.1.8 + uses: fish-shop/install-fish-shell@57272d7a6e6d42b1554081bfcb818189a2e8413f # v2.1.9 - name: Create fish shell file with valid indentation run: | echo "\