diff --git a/.github/workflows/code-quality.yml b/.github/workflows/code-quality.yml index 39bab8b..746ee3d 100644 --- a/.github/workflows/code-quality.yml +++ b/.github/workflows/code-quality.yml @@ -37,14 +37,14 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false # Setup PHP with Composer and cs2pr - name: Setup PHP and tools - uses: shivammathur/setup-php@7c071dfe9dc99bdf297fa79cb49ea005b9fcadbc # v2.37.1 + uses: shivammathur/setup-php@f3e473d116dcccaddc5834248c87452386958240 # v2.37.2 with: php-version: ${{ matrix.php }} tools: composer:v2, cs2pr diff --git a/.github/workflows/composer-diff.yml b/.github/workflows/composer-diff.yml index 8746c87..74bf2eb 100644 --- a/.github/workflows/composer-diff.yml +++ b/.github/workflows/composer-diff.yml @@ -23,14 +23,14 @@ jobs: pull-requests: write # needed for sticky-pull-request-comment to post/update PR comments steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 # Required for IonBazan/composer-diff-action # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false - name: Setup PHP and tools - uses: shivammathur/setup-php@7c071dfe9dc99bdf297fa79cb49ea005b9fcadbc # v2.37.1 + uses: shivammathur/setup-php@f3e473d116dcccaddc5834248c87452386958240 # v2.37.2 with: php-version: 8.3 tools: composer:v2 @@ -43,7 +43,7 @@ jobs: uses: IonBazan/composer-diff-action@3140157575f6a67799cc80248ae35f5fb303ab15 # v1.2.0 - name: Post diff as sticky comment - uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3.0.4 + uses: marocchino/sticky-pull-request-comment@5770ad5eb8f42dd2c4f34da00c94c5381e49af88 # v3.0.5 # An empty diff result will break this action. if: ${{ steps.composer-diff.outputs.composer_diff_exit_code != 0 }} with: diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 5875878..43b48be 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -33,13 +33,13 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false - name: Setup PHP and tools - uses: shivammathur/setup-php@7c071dfe9dc99bdf297fa79cb49ea005b9fcadbc # v2.37.1 + uses: shivammathur/setup-php@f3e473d116dcccaddc5834248c87452386958240 # v2.37.2 with: php-version: ${{ matrix.php }} tools: composer:v2