diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 3450fe44..8ebaa245 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -67,7 +67,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@19b2f06db2b6f5108140aeb04014ef02b648f789 + uses: github/codeql-action/init@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 with: languages: ${{ matrix.language }} build-mode: ${{ matrix.build-mode }} @@ -80,6 +80,6 @@ jobs: # queries: security-extended,security-and-quality - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@19b2f06db2b6f5108140aeb04014ef02b648f789 + uses: github/codeql-action/analyze@b20883b0cd1f46c72ae0ba6d1090936928f9fa30 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml index ddac97da..6e7571fa 100644 --- a/.github/workflows/release.yaml +++ b/.github/workflows/release.yaml @@ -87,7 +87,7 @@ jobs: git tag --annotate --message "${msg}" ${{ env.RELEASE_VERSION }} git push origin ${{ env.RELEASE_VERSION }} - name: Log in to the Container registry - uses: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef + uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 with: registry: ${{ env.REGISTRY }} username: ${{ github.actor }} @@ -99,7 +99,7 @@ jobs: mkdir -p output helm template ./deploy --namespace ocm-system --set "manager.image.tag=${{ env.RELEASE_VERSION }}" --include-crds > ./output/install.yaml - name: Setup Syft - uses: anchore/sbom-action/download-syft@62ad5284b8ced813296287a0b63906cb364b73ee # v0.22.0 + uses: anchore/sbom-action/download-syft@deef08a0db64bfad603422135db61477b16cef56 # v0.22.1 - name: Setup Cosign uses: sigstore/cosign-installer@faadad0cce49287aee09b3a48701e75088a2c6ad - name: Run goreleaser