From 68f4bf9eae102f79ff324de5a00f3d763716e329 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Mon, 4 Sep 2023 12:38:39 +0000 Subject: [PATCH] Update actions/checkout action to v4 --- .github/workflows/cve-scanning-docker.yml | 2 +- .github/workflows/cve-scanning-dotnet.yml | 2 +- .github/workflows/cve-scanning-gradle.yml | 2 +- .github/workflows/main.yml | 8 ++++---- .github/workflows/semgrep.yml | 2 +- 5 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/cve-scanning-docker.yml b/.github/workflows/cve-scanning-docker.yml index 3bb2ec6c7..aed55ef68 100644 --- a/.github/workflows/cve-scanning-docker.yml +++ b/.github/workflows/cve-scanning-docker.yml @@ -6,7 +6,7 @@ jobs: scan-docker: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 - uses: docker-practice/actions-setup-docker@1.0.11 - name: Build run: docker build -f Dockerfile -t user/app:latest . diff --git a/.github/workflows/cve-scanning-dotnet.yml b/.github/workflows/cve-scanning-dotnet.yml index ba5295dc2..b06e59892 100644 --- a/.github/workflows/cve-scanning-dotnet.yml +++ b/.github/workflows/cve-scanning-dotnet.yml @@ -9,7 +9,7 @@ jobs: scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 - name: Setup .NET uses: actions/setup-dotnet@v3 with: diff --git a/.github/workflows/cve-scanning-gradle.yml b/.github/workflows/cve-scanning-gradle.yml index c9350bc4a..1fe06a12b 100644 --- a/.github/workflows/cve-scanning-gradle.yml +++ b/.github/workflows/cve-scanning-gradle.yml @@ -6,7 +6,7 @@ jobs: scan: runs-on: ubuntu-latest steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 - name: Set up JDK 11 uses: actions/setup-java@v3 with: diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 807cae909..cffa26d25 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -31,7 +31,7 @@ jobs: package_upload_enabled: true steps: - name: Check out the code - uses: actions/checkout@v3 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 with: fetch-depth: 0 - name: Run Linux build @@ -95,7 +95,7 @@ jobs: package_upload_enabled: true steps: - name: Check out the code - uses: actions/checkout@v3 + uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 with: fetch-depth: 0 - name: Run Linux build @@ -145,7 +145,7 @@ jobs: name: MSVC 2022 x64 steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 with: fetch-depth: 0 - name: Vcpkg Dependencies @@ -177,7 +177,7 @@ jobs: timeout-minutes: 60 continue-on-error: true steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 with: fetch-depth: 0 - name: MacOS Build diff --git a/.github/workflows/semgrep.yml b/.github/workflows/semgrep.yml index 1a50ce6ca..d6cdb968a 100644 --- a/.github/workflows/semgrep.yml +++ b/.github/workflows/semgrep.yml @@ -9,7 +9,7 @@ jobs: container: image: returntocorp/semgrep steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4 - run: semgrep scan --error --config auto env: SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }} \ No newline at end of file