From 22b95005994eafb37e8923d779066a12481bde74 Mon Sep 17 00:00:00 2001 From: mahula Date: Sun, 4 Aug 2024 21:14:06 +0200 Subject: [PATCH] pin all github actions by commit hash --- .github/workflows/check-documentation.yml | 12 +++--- .../workflows/cleanup-cache-at-pr-closing.yml | 2 +- .github/workflows/deploy-documentation.yml | 10 ++--- .../workflows/frontend.deploy.chromatic.yml | 2 +- .../workflows/frontend.test.build.code.yml | 6 +-- .../workflows/frontend.test.build.docker.yml | 8 ++-- .../workflows/frontend.test.build.docs.yml | 6 +-- .../frontend.test.build.storybook.yml | 6 +-- .github/workflows/frontend.test.lint.code.yml | 6 +-- .github/workflows/frontend.test.unit.code.yml | 6 +-- .github/workflows/publish.yml | 38 +++++++++---------- .github/workflows/test-backend.yml | 20 +++++----- .github/workflows/test-e2e.yml | 8 ++-- .github/workflows/test-webapp.yml | 16 ++++---- .github/workflows/test.lint_pr.yml | 2 +- 15 files changed, 74 insertions(+), 74 deletions(-) diff --git a/.github/workflows/check-documentation.yml b/.github/workflows/check-documentation.yml index ad0d6e17e..522c1523f 100644 --- a/.github/workflows/check-documentation.yml +++ b/.github/workflows/check-documentation.yml @@ -11,10 +11,10 @@ jobs: documentation: ${{ steps.changes.outputs.documentation }} steps: - name: Checkout code - uses: actions/checkout@master + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for markdown file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -28,13 +28,13 @@ jobs: if: needs.files-changed.outputs.markdown == 'true' steps: - name: Checkout code - uses: actions/checkout@master + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Remove old documentation files run: rm -rf ./deployment/src/old/ ./CHANGELOG.md # workaround until https://github.com/gaurav-nelson/github-action-markdown-link-check/pull/183 has been done - name: Check Markdown Links - uses: gaurav-nelson/github-action-markdown-link-check@master + uses: gaurav-nelson/github-action-markdown-link-check@7d83e59a57f3c201c76eed3d33dff64ec4452d27 # 1.0.15 with: use-quiet-mode: 'yes' use-verbose-mode: 'no' @@ -51,10 +51,10 @@ jobs: if: needs.files-changed.outputs.documentation == 'true' steps: - name: Checkout code - uses: actions/checkout@master + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Setup Node 20 - uses: actions/setup-node@v4 + uses: actions/setup-node@26961cf329f22f6837d5f54c3efd76b480300ace # v4.0.3 with: node-version: '20' diff --git a/.github/workflows/cleanup-cache-at-pr-closing.yml b/.github/workflows/cleanup-cache-at-pr-closing.yml index 6512d1d64..7424e2876 100644 --- a/.github/workflows/cleanup-cache-at-pr-closing.yml +++ b/.github/workflows/cleanup-cache-at-pr-closing.yml @@ -22,7 +22,7 @@ jobs: continue-on-error: true steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Cleanup run: | diff --git a/.github/workflows/deploy-documentation.yml b/.github/workflows/deploy-documentation.yml index 3f5fc2735..82081ff93 100644 --- a/.github/workflows/deploy-documentation.yml +++ b/.github/workflows/deploy-documentation.yml @@ -13,10 +13,10 @@ jobs: documentation: ${{ steps.changes.outputs.documentation }} steps: - name: Checkout code - uses: actions/checkout@master + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for file changes - uses: dorny/paths-filter@master + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -27,10 +27,10 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@master + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Setup Node 20 - uses: actions/setup-node@v4 + uses: actions/setup-node@26961cf329f22f6837d5f54c3efd76b480300ace # v4.0.3 with: node-version: 20 @@ -38,7 +38,7 @@ jobs: run: npm install && npm run docs:build - name: Deploy Vuepress to Github Pages - uses: crazy-max/ghaction-github-pages@v4 + uses: crazy-max/ghaction-github-pages@cda5497acf90563d34489ed832a67c2c50353a16 # v4.0.0 with: target_branch: gh-pages build_dir: .vuepress/dist diff --git a/.github/workflows/frontend.deploy.chromatic.yml b/.github/workflows/frontend.deploy.chromatic.yml index 280083383..c1f3fbcae 100644 --- a/.github/workflows/frontend.deploy.chromatic.yml +++ b/.github/workflows/frontend.deploy.chromatic.yml @@ -12,7 +12,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 with: fetch-depth: 0 diff --git a/.github/workflows/frontend.test.build.code.yml b/.github/workflows/frontend.test.build.code.yml index 335ea3cbe..135fe216d 100644 --- a/.github/workflows/frontend.test.build.code.yml +++ b/.github/workflows/frontend.test.build.code.yml @@ -11,10 +11,10 @@ jobs: outputs: changes: ${{ steps.changes.outputs.frontend-test-build-code }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -30,7 +30,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Build run: npm install && npm run build diff --git a/.github/workflows/frontend.test.build.docker.yml b/.github/workflows/frontend.test.build.docker.yml index 0f88830d8..1f39f0537 100644 --- a/.github/workflows/frontend.test.build.docker.yml +++ b/.github/workflows/frontend.test.build.docker.yml @@ -11,10 +11,10 @@ jobs: outputs: changes: ${{ steps.changes.outputs.frontend-test-build-docker }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -30,7 +30,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Build Docker Production run: docker compose -f docker-compose.yml build @@ -45,7 +45,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Build Docker Development run: docker compose build diff --git a/.github/workflows/frontend.test.build.docs.yml b/.github/workflows/frontend.test.build.docs.yml index 9211abfd9..67ca9bb2f 100644 --- a/.github/workflows/frontend.test.build.docs.yml +++ b/.github/workflows/frontend.test.build.docs.yml @@ -11,10 +11,10 @@ jobs: outputs: changes: ${{ steps.changes.outputs.frontend-test-build-docs }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -30,7 +30,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Build Docs run: npm install && npm run docs:build diff --git a/.github/workflows/frontend.test.build.storybook.yml b/.github/workflows/frontend.test.build.storybook.yml index 9cadcd23e..66cbff3e8 100644 --- a/.github/workflows/frontend.test.build.storybook.yml +++ b/.github/workflows/frontend.test.build.storybook.yml @@ -11,10 +11,10 @@ jobs: outputs: changes: ${{ steps.changes.outputs.frontend-test-build-storybook }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -30,7 +30,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Build Storybook run: npm install && npm run storybook:build diff --git a/.github/workflows/frontend.test.lint.code.yml b/.github/workflows/frontend.test.lint.code.yml index 7cba5e811..c4723f6e7 100644 --- a/.github/workflows/frontend.test.lint.code.yml +++ b/.github/workflows/frontend.test.lint.code.yml @@ -11,10 +11,10 @@ jobs: outputs: changes: ${{ steps.changes.outputs.frontend-test-lint-code }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -30,7 +30,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Lint run: npm install && npm run test:lint diff --git a/.github/workflows/frontend.test.unit.code.yml b/.github/workflows/frontend.test.unit.code.yml index 00dd78ded..21cdb0fee 100644 --- a/.github/workflows/frontend.test.unit.code.yml +++ b/.github/workflows/frontend.test.unit.code.yml @@ -11,10 +11,10 @@ jobs: outputs: changes: ${{ steps.changes.outputs.frontend-test-unit-code }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -30,7 +30,7 @@ jobs: WORKING_DIRECTORY: ./frontend steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Frontend | Unit run: npm install && npm run test:unit diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 416508542..7aa6351a3 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -14,7 +14,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Setup env run: | echo "VERSION=$(node -p -e "require('./package.json').version")" >> $GITHUB_ENV @@ -34,7 +34,7 @@ jobs: - name: Neo4J | Save docker image run: docker save "ocelotsocialnetwork/neo4j-community" > /tmp/neo4j.tar - name: Upload Artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5 with: name: docker-neo4j-community path: /tmp/neo4j.tar @@ -47,7 +47,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Setup env run: | echo "VERSION=$(node -p -e "require('./package.json').version")" >> $GITHUB_ENV @@ -83,7 +83,7 @@ jobs: - name: Backend | Save docker image run: docker save "ocelotsocialnetwork/backend" > /tmp/backend.tar - name: Upload Artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5 with: name: docker-backend-production path: /tmp/backend.tar @@ -96,7 +96,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Setup env run: | echo "VERSION=$(node -p -e "require('./package.json').version")" >> $GITHUB_ENV @@ -132,7 +132,7 @@ jobs: - name: Webapp | Save docker image run: docker save "ocelotsocialnetwork/webapp" > /tmp/webapp.tar - name: Upload Artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5 with: name: docker-webapp-production path: /tmp/webapp.tar @@ -145,7 +145,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Setup env run: | echo "VERSION=$(node -p -e "require('./package.json').version")" >> $GITHUB_ENV @@ -184,7 +184,7 @@ jobs: - name: Maintenance | Save docker image run: docker save "ocelotsocialnetwork/maintenance" > /tmp/maintenance.tar - name: Upload Artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5 with: name: docker-maintenance-production path: /tmp/maintenance.tar @@ -201,25 +201,25 @@ jobs: DOCKERHUB_TOKEN: ${{ secrets.DOCKERHUB_TOKEN }} steps: - name: Download Docker Image (Neo4J) - uses: actions/download-artifact@v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: docker-neo4j-community path: /tmp - run: docker load < /tmp/neo4j.tar - name: Download Docker Image (Backend) - uses: actions/download-artifact@v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: docker-backend-production path: /tmp - run: docker load < /tmp/backend.tar - name: Download Docker Image (WebApp) - uses: actions/download-artifact@v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: docker-webapp-production path: /tmp - run: docker load < /tmp/webapp.tar - name: Download Docker Image (Maintenance) - uses: actions/download-artifact@v4 + uses: actions/download-artifact@fa0a91b85d4f404e444e00e005971372dc801d16 # v4.1.8 with: name: docker-maintenance-production path: /tmp @@ -243,7 +243,7 @@ jobs: needs: [upload_to_dockerhub] steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 with: fetch-depth: 0 # Fetch full History for changelog - name: Setup env @@ -253,7 +253,7 @@ jobs: echo "BUILD_COMMIT=${GITHUB_SHA}" >> $GITHUB_ENV - run: echo "BUILD_VERSION=${VERSION}-${GITHUB_RUN_NUMBER}" >> $GITHUB_ENV - name: package-version-to-git-tag + build number - uses: pkgdeps/git-tag-action@v3 + uses: pkgdeps/git-tag-action@81b45ff87eb7f7bd49e76e2bed448990d4dd72b3 # v3.0.0 with: github_token: ${{ secrets.GITHUB_TOKEN }} github_repo: ${{ github.repository }} @@ -267,7 +267,7 @@ jobs: - name: package-version-to-git-release continue-on-error: true # Will fail if tag exists id: create_release - uses: actions/create-release@v1 + uses: actions/create-release@4c11c9fe1dcd9636620a16455165783b20fc7ea0 # v1.1.4 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # This token is provided by Actions, you do not need to create your own token with: @@ -283,7 +283,7 @@ jobs: needs: [github_tag] steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 with: fetch-depth: 0 # Fetch full History for changelog - name: Setup env @@ -293,7 +293,7 @@ jobs: echo "BUILD_COMMIT=${GITHUB_SHA}" >> $GITHUB_ENV - run: echo "BUILD_VERSION=${VERSION}-${GITHUB_RUN_NUMBER}" >> $GITHUB_ENV #- name: Repository Dispatch - # uses: peter-evans/repository-dispatch@v3 + # uses: peter-evans/repository-dispatch@1ebfb41781aa0fae446773941d0b3025198fc1a9 # v3.0.0 # with: # token: ${{ github.token }} # event-type: trigger-ocelot-build-success @@ -301,7 +301,7 @@ jobs: # client-payload: '{"ref": "${{ github.ref }}", "sha": "${{ github.sha }}", "VERSION": "${VERSION}", "BUILD_DATE": "${BUILD_DATE}", "BUILD_COMMIT": "${BUILD_COMMIT}", "BUILD_VERSION": "${BUILD_VERSION}"}' - name: Repository Dispatch stage.ocelot.social - uses: peter-evans/repository-dispatch@v3 + uses: peter-evans/repository-dispatch@1ebfb41781aa0fae446773941d0b3025198fc1a9 # v3.0.0 with: token: ${{ secrets.OCELOT_PUBLISH_EVENT_PAT }} # this token is required to access the other repository event-type: trigger-ocelot-build-success @@ -309,7 +309,7 @@ jobs: client-payload: '{"ref": "${{ github.ref }}", "sha": "${{ github.sha }}", "GITHUB_RUN_NUMBER": "${{ env.GITHUB_RUN_NUMBER }}", "VERSION": "${VERSION}", "BUILD_DATE": "${BUILD_DATE}", "BUILD_COMMIT": "${BUILD_COMMIT}", "BUILD_VERSION": "${BUILD_VERSION}"}' - name: Repository Dispatch stage.yunite.me - uses: peter-evans/repository-dispatch@v3 + uses: peter-evans/repository-dispatch@1ebfb41781aa0fae446773941d0b3025198fc1a9 # v3.0.0 with: token: ${{ secrets.OCELOT_PUBLISH_EVENT_PAT }} # this token is required to access the other repository event-type: trigger-ocelot-build-success diff --git a/.github/workflows/test-backend.yml b/.github/workflows/test-backend.yml index 1574b7cee..b92cdacac 100644 --- a/.github/workflows/test-backend.yml +++ b/.github/workflows/test-backend.yml @@ -11,10 +11,10 @@ jobs: backend: ${{ steps.changes.outputs.backend }} docker: ${{ steps.changes.outputs.docker }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for backend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -28,7 +28,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Neo4J | Build 'community' image run: | @@ -37,7 +37,7 @@ jobs: - name: Cache docker images id: cache-neo4j - uses: actions/cache/save@v4.0.2 + uses: actions/cache/sav@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: /tmp/neo4j.tar key: ${{ github.run_id }}-backend-neo4j-cache @@ -49,7 +49,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: backend | Build 'test' image run: | @@ -58,7 +58,7 @@ jobs: - name: Cache docker images id: cache-backend - uses: actions/cache/save@v4.0.2 + uses: actions/cache/sav@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: /tmp/backend.tar key: ${{ github.run_id }}-backend-cache @@ -70,7 +70,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: backend | Lint run: cd backend && yarn && yarn run lint @@ -84,17 +84,17 @@ jobs: checks: write steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Restore Neo4J cache - uses: actions/cache/restore@v4.0.2 + uses: actions/cache/restore@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: /tmp/neo4j.tar key: ${{ github.run_id }}-backend-neo4j-cache fail-on-cache-miss: true - name: Restore Backend cache - uses: actions/cache/restore@v4.0.2 + uses: actions/cache/restore@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: /tmp/backend.tar key: ${{ github.run_id }}-backend-cache diff --git a/.github/workflows/test-e2e.yml b/.github/workflows/test-e2e.yml index fabb2a3f1..734006ef1 100644 --- a/.github/workflows/test-e2e.yml +++ b/.github/workflows/test-e2e.yml @@ -8,7 +8,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Copy env files run: | @@ -37,7 +37,7 @@ jobs: - name: Cache docker images id: cache - uses: actions/cache/save@v4.0.2 + uses: actions/cache/sav@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: | /opt/cucumber-json-formatter @@ -59,7 +59,7 @@ jobs: job: [1, 2, 3, 4, 5, 6, 7, 8] steps: - name: Restore cache - uses: actions/cache/restore@v4.0.2 + uses: actions/cache/restore@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 id: cache with: path: | @@ -93,7 +93,7 @@ jobs: - name: Full stack tests | if tests failed, upload report id: e2e-report if: ${{ failure() && steps.e2e-tests.conclusion == 'failure' }} - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@89ef406dd8d7e03cfd12d9e0a4a378f454709029 # v4.3.5 with: name: ocelot-e2e-test-report-pr${{ needs.docker_preparation.outputs.pr-number }} path: /home/runner/work/Ocelot-Social/Ocelot-Social/cypress/reports/cucumber_html_report diff --git a/.github/workflows/test-webapp.yml b/.github/workflows/test-webapp.yml index 2a6593994..2d832315f 100644 --- a/.github/workflows/test-webapp.yml +++ b/.github/workflows/test-webapp.yml @@ -11,10 +11,10 @@ jobs: docker: ${{ steps.changes.outputs.docker }} webapp: ${{ steps.changes.outputs.webapp }} steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check for frontend file changes - uses: dorny/paths-filter@v3.0.2 + uses: dorny/paths-filter@dorny/paths-filter@de90cc6fb38fc0963ad72b210f1f284cd68cea36 # v3.0.2 id: changes with: token: ${{ github.token }} @@ -28,7 +28,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Check translation files run: | @@ -42,7 +42,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Webapp | Build 'test' image run: | @@ -50,7 +50,7 @@ jobs: docker save "ocelotsocialnetwork/webapp:test" > /tmp/webapp.tar - name: Cache docker image - uses: actions/cache/save@v4.0.2 + uses: actions/cache/sav@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: /tmp/webapp.tar key: ${{ github.run_id }}-webapp-cache @@ -62,7 +62,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: webapp | Lint run: cd webapp && yarn && yarn run lint @@ -76,10 +76,10 @@ jobs: checks: write steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@9a9194f87191a7e9055e3e9b95b8cfb13023bb08 # v4.1.7 - name: Restore webapp cache - uses: actions/cache/restore@v4.0.2 + uses: actions/cache/restore@40c3b67b2955d93d83b27ed164edd0756bc24049 # v4.0.2 with: path: /tmp/webapp.tar key: ${{ github.run_id }}-webapp-cache diff --git a/.github/workflows/test.lint_pr.yml b/.github/workflows/test.lint_pr.yml index 8832ba992..7c23ecfd0 100644 --- a/.github/workflows/test.lint_pr.yml +++ b/.github/workflows/test.lint_pr.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-latest if: ${{ github.actor != 'dependabot[bot]' }} steps: - - uses: amannn/action-semantic-pull-request@v5 + - uses: amannn/action-semantic-pull-request@80c0371c57c5142ed6c844270bba1864bac8a4c6 # v5.5.3 env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} with: