diff --git a/.github/actions/upload-actual/action.yml b/.github/actions/upload-actual/action.yml index 45f03c0b04a..894ac43f2aa 100644 --- a/.github/actions/upload-actual/action.yml +++ b/.github/actions/upload-actual/action.yml @@ -22,7 +22,7 @@ runs: using: composite steps: - name: Upload Actual Results - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7 with: name: actual_${{ inputs.name }} path: ${{ inputs.it-dir }}/${{ inputs.actual-dir }} @@ -46,7 +46,7 @@ runs: npx diff2html-cli --input file --style side --file "target/diff_${NAME}.html" -- "target/test.diff" - name: Upload Diff Report - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7 with: name: diff_${{ inputs.name }} path: ${{ inputs.it-dir }}/target/diff_${{ inputs.name }}.html diff --git a/.github/workflows/PrepareNextIteration.yml b/.github/workflows/PrepareNextIteration.yml index 506f09de5e8..33d99e4e63c 100644 --- a/.github/workflows/PrepareNextIteration.yml +++ b/.github/workflows/PrepareNextIteration.yml @@ -18,7 +18,7 @@ jobs: steps: - name: Checkout Sources - uses: actions/checkout@v4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index c512928ce1c..0b82cbaf07b 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -30,7 +30,7 @@ jobs: build-number: ${{ steps.build-maven.outputs.BUILD_NUMBER }} deployed: ${{ steps.build-maven.outputs.deployed }} steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: version: 2026.4.25 @@ -71,7 +71,7 @@ jobs: env: BUILD_NUMBER: ${{ needs.build.outputs.build-number }} steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: submodules: recursive - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 @@ -138,7 +138,7 @@ jobs: env: BUILD_NUMBER: ${{ needs.build.outputs.build-number }} steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: submodules: recursive - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 @@ -186,7 +186,7 @@ jobs: env: BUILD_NUMBER: ${{ needs.build.outputs.build-number }} steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: version: 2026.4.25 @@ -233,7 +233,7 @@ jobs: env: BUILD_NUMBER: ${{ needs.build.outputs.build-number }} steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: version: 2026.4.25 @@ -268,7 +268,7 @@ jobs: env: BUILD_NUMBER: ${{ needs.build.outputs.build-number }} steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: version: 2026.4.25 @@ -321,7 +321,7 @@ jobs: BUILD_NUMBER: ${{ needs.build.outputs.build-number }} SQ_VERSION: LATEST_RELEASE steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 # For now, the autoscan job need to execute two mvn commands: # * The build of java-checks-test-sources module which requires Java 24. # * The tests using Orchestrator and SonarQube that, for now, fail to work using Java 24 @@ -390,7 +390,7 @@ jobs: steps: - name: Config Git run: git config --global core.autocrlf input - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: version: 2026.4.25 diff --git a/.github/workflows/dogfood.yml b/.github/workflows/dogfood.yml index 40a041e86d8..df6d2ea93f6 100644 --- a/.github/workflows/dogfood.yml +++ b/.github/workflows/dogfood.yml @@ -37,7 +37,7 @@ jobs: # Notify on Slack - name: Notify failures on Slack if: failure() - uses: slackapi/slack-github-action@70cd7be8e40a46e8b0eced40b0de447bdb42f68e # v1.26.0 + uses: slackapi/slack-github-action@03ea5433c137af7c0495bc0cad1af10403fc800c # v3.0.2 env: SLACK_BOT_TOKEN: ${{ fromJSON(steps.secrets.outputs.vault).SLACK_BOT_TOKEN }} with: diff --git a/.github/workflows/mark-prs-stale.yml b/.github/workflows/mark-prs-stale.yml index 48297e62a37..5ff074a5104 100644 --- a/.github/workflows/mark-prs-stale.yml +++ b/.github/workflows/mark-prs-stale.yml @@ -11,7 +11,7 @@ jobs: issues: write pull-requests: write steps: - - uses: actions/stale@v9 + - uses: actions/stale@b5d41d4e1d5dceea10e7104786b73624c18a190f # v10 with: stale-pr-message: 'This PR is stale because it has been open 7 days with no activity. If there is no activity in the next 7 days it will be closed automatically' stale-pr-label: 'stale' diff --git a/.github/workflows/unified-dogfooding.yml b/.github/workflows/unified-dogfooding.yml index 3f2141b5cfd..4b25df0b226 100644 --- a/.github/workflows/unified-dogfooding.yml +++ b/.github/workflows/unified-dogfooding.yml @@ -12,7 +12,7 @@ jobs: id-token: write contents: read steps: - - uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - uses: jdx/mise-action@1648a7812b9aeae629881980618f079932869151 # v4.0.1 with: version: 2026.4.25