From 80c69f9d5755112425a99e63587c75087c7a8c9d Mon Sep 17 00:00:00 2001
From: Maximilian Franzke <787658+mfranzke@users.noreply.github.com>
Date: Mon, 5 Jun 2023 15:20:09 +0200
Subject: [PATCH] refactor: preventing the need for some dependencies updates
 approvals (#335)

* refactor: preventing the need for some dependencies updates approvals

As we use this dependency only within our GitHub Action but not within any JavaScript, it's easy not to pin it to a minor or even patch version, but only major.

* fix: this approach doesn't work
---
 .github/workflows/00-scan-secrets.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/00-scan-secrets.yml b/.github/workflows/00-scan-secrets.yml
index fcad0e54b..b134d8a47 100644
--- a/.github/workflows/00-scan-secrets.yml
+++ b/.github/workflows/00-scan-secrets.yml
@@ -17,7 +17,7 @@ jobs:
         id: extract_branch
 
       - name: 🐷 TruffleHog OSS
-        uses: trufflesecurity/trufflehog@v3.39.0
+        uses: trufflesecurity/trufflehog@main
         with:
           path: ./
           base: ${{ steps.extract_branch.outputs.branch-name }}