diff --git a/.github/workflows/typos.yaml b/.github/workflows/typos.yaml index 37c0e5ec..f862655f 100644 --- a/.github/workflows/typos.yaml +++ b/.github/workflows/typos.yaml @@ -1,13 +1,10 @@ name: Spell check with typos - on: push: branches: ["main"] pull_request: branches: ["**"] - permissions: {} - jobs: typos: runs-on: ubuntu-latest @@ -18,7 +15,5 @@ jobs: uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - name: Run typos - uses: crate-ci/typos@5374cbf686e897b15713110e233094e2874de7ef # v1.46.1 - + uses: crate-ci/typos@aca895bf05aec0cb7dffa6f94495e923224d9f17 # v1.46.2 diff --git a/.github/workflows/updatecli.yaml b/.github/workflows/updatecli.yaml index 43aa78bd..b50682d5 100644 --- a/.github/workflows/updatecli.yaml +++ b/.github/workflows/updatecli.yaml @@ -16,7 +16,7 @@ jobs: with: persistent-credentials: false - name: "Setup updatecli" - uses: "updatecli/updatecli-action@2c3221bc5f4499a99fec2c87d9de4a83cb30e990" # v3.1.3 + uses: "updatecli/updatecli-action@e71be7554f3f940bc439cf720b3e4e379823c562" # v3.2.0 with: version: "v0.116.3" - name: "Run updatecli" diff --git a/.github/workflows/updatecli_release.yaml b/.github/workflows/updatecli_release.yaml index 3cbee8dd..47d17ebd 100644 --- a/.github/workflows/updatecli_release.yaml +++ b/.github/workflows/updatecli_release.yaml @@ -22,7 +22,7 @@ jobs: with: persist-credentials: false - name: "Install Updatecli" - uses: "updatecli/updatecli-action@2c3221bc5f4499a99fec2c87d9de4a83cb30e990" # v3.1.3 + uses: "updatecli/updatecli-action@e71be7554f3f940bc439cf720b3e4e379823c562" # v3.2.0 with: version: "v0.117.0" # releasepost is required by the Updatecli diff --git a/.github/workflows/updatecli_test.yaml b/.github/workflows/updatecli_test.yaml index 612290eb..87fc29a8 100644 --- a/.github/workflows/updatecli_test.yaml +++ b/.github/workflows/updatecli_test.yaml @@ -13,7 +13,7 @@ jobs: with: persist-credentials: false - name: "Setup updatecli" - uses: "updatecli/updatecli-action@2c3221bc5f4499a99fec2c87d9de4a83cb30e990" # v3.1.3 + uses: "updatecli/updatecli-action@e71be7554f3f940bc439cf720b3e4e379823c562" # v3.2.0 with: version: "v0.116.3" - name: "Test updatecli in dry-run mode" diff --git a/.github/workflows/updatecli_update.yaml b/.github/workflows/updatecli_update.yaml index 62edb89a..4bbef6a4 100644 --- a/.github/workflows/updatecli_update.yaml +++ b/.github/workflows/updatecli_update.yaml @@ -15,7 +15,7 @@ jobs: with: persist-credentials: false - name: "Setup updatecli" - uses: "updatecli/updatecli-action@2c3221bc5f4499a99fec2c87d9de4a83cb30e990" # v3.1.3 + uses: "updatecli/updatecli-action@e71be7554f3f940bc439cf720b3e4e379823c562" # v3.2.0 with: version: "v0.116.3" - name: "Run updatecli only on monitored pipelines" diff --git a/.github/workflows/zizmor.yaml b/.github/workflows/zizmor.yaml index 1045e1fd..f2b636a7 100644 --- a/.github/workflows/zizmor.yaml +++ b/.github/workflows/zizmor.yaml @@ -1,13 +1,10 @@ -name: GitHub Actions Security Analysis with zizmor 🌈 - +name: "GitHub Actions Security Analysis with zizmor \U0001F308" on: push: branches: ["main"] pull_request: branches: ["**"] - permissions: {} - jobs: zizmor: runs-on: ubuntu-latest @@ -18,9 +15,8 @@ jobs: uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 with: persist-credentials: false - - - name: Run zizmor 🌈 - uses: zizmorcore/zizmor-action@b1d7e1fb5de872772f31590499237e7cce841e8e # v0.5.3 + - name: "Run zizmor \U0001F308" + uses: zizmorcore/zizmor-action@5f14fd08f7cf1cb1609c1e344975f152c7ee938d # v0.5.6 with: # intentionally not scanning the entire repository, inputs: ./.github/