diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index abde0b4..c4e1392 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -17,4 +17,4 @@ jobs: name: CodeQL Analysis permissions: security-events: write - uses: fish-shop/workflows/.github/workflows/codeql-analysis.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 + uses: fish-shop/workflows/.github/workflows/codeql-analysis.yml@28dc0e7b7df42c229e3875504f99f0553fcd1dd1 # v1.14.3 diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 9a8f90d..f55d3d8 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -11,4 +11,4 @@ jobs: name: Dependency Review permissions: pull-requests: write - uses: fish-shop/workflows/.github/workflows/dependency-review.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 + uses: fish-shop/workflows/.github/workflows/dependency-review.yml@28dc0e7b7df42c229e3875504f99f0553fcd1dd1 # v1.14.3 diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml index 54d6202..6c7fb0e 100644 --- a/.github/workflows/gitleaks.yml +++ b/.github/workflows/gitleaks.yml @@ -14,6 +14,6 @@ jobs: name: Gitleaks SAST scan permissions: pull-requests: write - uses: fish-shop/workflows/.github/workflows/gitleaks.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 + uses: fish-shop/workflows/.github/workflows/gitleaks.yml@28dc0e7b7df42c229e3875504f99f0553fcd1dd1 # v1.14.3 secrets: gitleaks_license: ${secrets.GITLEAKS_LICENSE} diff --git a/.github/workflows/markdown-links.yml b/.github/workflows/markdown-links.yml index 6b25a10..a787731 100644 --- a/.github/workflows/markdown-links.yml +++ b/.github/workflows/markdown-links.yml @@ -11,4 +11,4 @@ jobs: name: Markdown Links Check permissions: pull-requests: write - uses: fish-shop/workflows/.github/workflows/markdown-links.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 + uses: fish-shop/workflows/.github/workflows/markdown-links.yml@28dc0e7b7df42c229e3875504f99f0553fcd1dd1 # v1.14.3 diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml index ad41eb7..8750efe 100644 --- a/.github/workflows/openssf-scorecard.yml +++ b/.github/workflows/openssf-scorecard.yml @@ -14,4 +14,4 @@ jobs: permissions: security-events: write # Needed to upload the results to code scanning dashboard id-token: write # Needed to publish results to OpenSSF API and get a badge - uses: fish-shop/workflows/.github/workflows/openssf-scorecard.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 + uses: fish-shop/workflows/.github/workflows/openssf-scorecard.yml@28dc0e7b7df42c229e3875504f99f0553fcd1dd1 # v1.14.3 diff --git a/.github/workflows/release-tags.yml b/.github/workflows/release-tags.yml index 04e0363..6062545 100644 --- a/.github/workflows/release-tags.yml +++ b/.github/workflows/release-tags.yml @@ -11,4 +11,4 @@ jobs: name: Release Tags permissions: contents: write - uses: fish-shop/workflows/.github/workflows/release-tags.yml@3bab619c84f7f115693f78dbe8c7c76f2b7a31fb # v1.14.2 + uses: fish-shop/workflows/.github/workflows/release-tags.yml@28dc0e7b7df42c229e3875504f99f0553fcd1dd1 # v1.14.3 diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index f8b0402..db1b23c 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -30,13 +30,13 @@ jobs: runs-on: ${{ matrix.os }} steps: - name: Harden runner - uses: step-security/harden-runner@f808768d1510423e83855289c910610ca9b43176 # v2.17.0 + uses: step-security/harden-runner@6c3c2f2c1c457b00c10c4848d6f5491db3b629df # v2.18.0 with: egress-policy: audit - name: Checkout repository uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Install fish shell - uses: fish-shop/install-fish-shell@57272d7a6e6d42b1554081bfcb818189a2e8413f # v2.1.9 + uses: fish-shop/install-fish-shell@38f3c68d264cce34cc9411e4ca25f7756c08030e # v2.1.10 - name: Create fish shell file with valid indentation run: | echo "\