Skip to content

Commit ad713ea

Browse files
pnachtpnacht
authored
Hash-pin GitHub Actions, set grouped dependabot PRs (#4161)
1 parent 1a6c9ee commit ad713ea

4 files changed

Lines changed: 12 additions & 8 deletions

File tree

.github/dependabot.yml

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -4,3 +4,7 @@ updates:
44
directory: "/"
55
schedule:
66
interval: "weekly"
7+
groups:
8+
github-actions:
9+
patterns:
10+
- "*"

.github/workflows/cifuzz.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ jobs:
3030
dry-run: false
3131
language: jvm
3232
- name: Upload Crash
33-
uses: actions/upload-artifact@v3
33+
uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3.1.3
3434
if: failure() && steps.build.outcome == 'success'
3535
with:
3636
name: artifacts

.github/workflows/codeql-analysis.yml

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -23,16 +23,16 @@ jobs:
2323

2424
steps:
2525
- name: Checkout repository
26-
uses: actions/checkout@v4.1.0
26+
uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
2727

2828
# Initializes the CodeQL tools for scanning.
2929
- name: Initialize CodeQL
30-
uses: github/codeql-action/init@v2
30+
uses: github/codeql-action/init@0116bc2df50751f9724a2e35ef1f24d22f90e4e1 # v2.22.3
3131
with:
3232
languages: ${{ matrix.language }}
3333

3434
- name: Autobuild
35-
uses: github/codeql-action/autobuild@v2
35+
uses: github/codeql-action/autobuild@0116bc2df50751f9724a2e35ef1f24d22f90e4e1 # v2.22.3
3636

3737
- name: Perform CodeQL Analysis
38-
uses: github/codeql-action/analyze@v2
38+
uses: github/codeql-action/analyze@0116bc2df50751f9724a2e35ef1f24d22f90e4e1 # v2.22.3

.github/workflows/main.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -30,9 +30,9 @@ jobs:
3030
env:
3131
JAVA_OPTS: "-XX:+TieredCompilation -XX:TieredStopAtLevel=1"
3232
steps:
33-
- uses: actions/checkout@v4.1.0
33+
- uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
3434
- name: Set up JDK
35-
uses: actions/setup-java@v3
35+
uses: actions/setup-java@0ab4596768b603586c0de567f2430c30f5b0d2b0 # v3.13.0
3636
with:
3737
distribution: 'temurin'
3838
java-version: ${{ matrix.java_version }}
@@ -63,7 +63,7 @@ jobs:
6363
run: ./mvnw -B -q -ff -ntp test
6464
- name: Publish code coverage
6565
if: github.event_name != 'pull_request' && matrix.java_version == '8'
66-
uses: codecov/codecov-action@v3
66+
uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # v3.1.4
6767
with:
6868
token: ${{ secrets.CODECOV_TOKEN }}
6969
file: ./target/site/jacoco/jacoco.xml

0 commit comments

Comments
 (0)