diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 1785a502..6f6d6f64 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -11,14 +11,14 @@ jobs: version: ${{ steps.genver.outputs.version }} steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} fetch-depth: 0 - name: Generate Version id: genver - uses: codacy/git-version@2.7.1 + uses: codacy/git-version@80c816f11db8dea5e3a81025f598193015b51832 # 2.8.0 with: minor-identifier: "feat:" release-branch: release @@ -39,14 +39,14 @@ jobs: - csharp/native/Demo.sln steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} fetch-depth: 0 submodules: true - name: Install .NET Core - uses: actions/setup-dotnet@v3 + uses: actions/setup-dotnet@3447fd6a9f9e57506b15f895c5b76d3b197dc7c2 # v3 with: dotnet-version: 6.x @@ -80,12 +80,12 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.head_ref }} - name: Install .NET Core - uses: actions/setup-dotnet@v3 + uses: actions/setup-dotnet@3447fd6a9f9e57506b15f895c5b76d3b197dc7c2 # v3 with: dotnet-version: 6.x @@ -119,7 +119,7 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} @@ -145,7 +145,7 @@ jobs: - multipleresults steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} @@ -158,7 +158,7 @@ jobs: aws: true - name: Checkout Infra - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: repository: aneoconsulting/ArmoniK path: infra @@ -198,7 +198,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.head_ref }} @@ -211,7 +211,7 @@ jobs: aws: true - name: Checkout Infra - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: repository: aneoconsulting/ArmoniK path: infra @@ -247,7 +247,7 @@ jobs: find /tmp/armoniklogs -name "*.log" - name: Store logs - uses: actions/upload-artifact@v3 + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3 if: always() with: name: Logs Worker diff --git a/.github/workflows/build_documentations.yml b/.github/workflows/build_documentations.yml index e20499e4..23a4516e 100644 --- a/.github/workflows/build_documentations.yml +++ b/.github/workflows/build_documentations.yml @@ -11,7 +11,7 @@ jobs: steps: - name: Checkout repo - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Get dotnet sdk run: | @@ -28,7 +28,7 @@ jobs: docfx Documentation/docfx.json - name: Deploy docfx documentation - uses: peaceiris/actions-gh-pages@v3 + uses: peaceiris/actions-gh-pages@373f7f263a76c20808c831209c920827a82a2847 # v3 with: github_token: ${{ secrets.GITHUB_TOKEN }} publish_dir: Documentation/_site diff --git a/.github/workflows/code-formatting.yml b/.github/workflows/code-formatting.yml index 9093482a..f11f0a18 100644 --- a/.github/workflows/code-formatting.yml +++ b/.github/workflows/code-formatting.yml @@ -9,7 +9,7 @@ jobs: timeout-minutes: 15 steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} @@ -46,7 +46,7 @@ jobs: run: | git diff > patch-csharp.diff - - uses: actions/upload-artifact@v3 + - uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3 if: ${{ failure() && steps.check-diff.conclusion == 'failure' }} with: name: patch-csharp diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 12b60ab0..736ee59f 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -16,7 +16,7 @@ jobs: release: ${{ steps.release.outputs.version }} steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} fetch-depth: 0 @@ -35,7 +35,7 @@ jobs: - name: Generate Snapshot Version id: snapshot - uses: codacy/git-version@2.7.1 + uses: codacy/git-version@80c816f11db8dea5e3a81025f598193015b51832 # 2.8.0 with: minor-identifier: "feat:" release-branch: ${{ github.ref_name }}-pre @@ -44,7 +44,7 @@ jobs: - name: Generate Release Version id: release - uses: codacy/git-version@2.7.1 + uses: codacy/git-version@80c816f11db8dea5e3a81025f598193015b51832 # 2.8.0 with: minor-identifier: "feat:" release-branch: ${{ steps.rev.outputs.current-branch }} @@ -77,19 +77,19 @@ jobs: path : ./csharp/native/MultipleResults/Client/Dockerfile steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} submodules: true - name: Set up QEMU - uses: docker/setup-qemu-action@v2 + uses: docker/setup-qemu-action@2b82ce82d56a2a04d2637cd93a637ae1b359c0a7 # v2 - name: Set up Docker Buildx id: buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 - name: login - uses: docker/login-action@v2 + uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc # v2 with: username: ${{ secrets.DOCKER_HUB_LOGIN }} password: ${{ secrets.DOCKER_HUB_TOKEN }} @@ -98,7 +98,7 @@ jobs: run: echo ${{ steps.buildx.outputs.platforms }} - name: Build and push - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: file: ${{ matrix.path }} context: ./csharp/native @@ -118,7 +118,7 @@ jobs: GENRELEASE: ${{ needs.versionning.outputs.release }} steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 with: ref: ${{ github.ref }} submodules: true diff --git a/.github/workflows/semantic-pull-request.yml b/.github/workflows/semantic-pull-request.yml index 6d9ef374..c9c68ed3 100644 --- a/.github/workflows/semantic-pull-request.yml +++ b/.github/workflows/semantic-pull-request.yml @@ -17,12 +17,12 @@ jobs: name: Validate PR title runs-on: ubuntu-latest steps: - - uses: amannn/action-semantic-pull-request@v5 + - uses: amannn/action-semantic-pull-request@e9fabac35e210fea40ca5b14c0da95a099eff26f # v5 id: lint_pr_title env: GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} - - uses: marocchino/sticky-pull-request-comment@v2 + - uses: marocchino/sticky-pull-request-comment@331f8f5b4215f0445d3c07b4967662a32a2d3e31 # v2 # When the previous steps fails, the workflow would stop. By adding this # condition you can continue the execution with the populated error message. if: always() && (steps.lint_pr_title.outputs.error_message != null) @@ -37,7 +37,7 @@ jobs: ``` # Delete a previous comment when the issue has been resolved - if: ${{ steps.lint_pr_title.outputs.error_message == null }} - uses: marocchino/sticky-pull-request-comment@v2 + uses: marocchino/sticky-pull-request-comment@331f8f5b4215f0445d3c07b4967662a32a2d3e31 # v2 with: header: pr-title-lint-error delete: true diff --git a/.github/workflows/sonar.yml b/.github/workflows/sonar.yml index 839a20a6..01104ea9 100644 --- a/.github/workflows/sonar.yml +++ b/.github/workflows/sonar.yml @@ -12,24 +12,24 @@ jobs: runs-on: windows-latest steps: - name: Set up JDK - uses: actions/setup-java@387ac29b308b003ca37ba93a6cab5eb57c8f5f93 # v3 + uses: actions/setup-java@0ab4596768b603586c0de567f2430c30f5b0d2b0 # v3 with: distribution: 'zulu' java-version: 17 - - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4 + - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4 with: fetch-depth: 0 # Shallow clones should be disabled for a better relevancy of analysis submodules: true - name: Cache SonarCloud packages - uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3 + uses: actions/cache@e12d46a63a90f2fae62d114769bbf2a179198b5c # v3 with: path: .\.sonar\cache key: ${{ runner.os }}-sonar restore-keys: ${{ runner.os }}-sonar - name: Cache SonarCloud scanner id: cache-sonar-scanner - uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3 + uses: actions/cache@e12d46a63a90f2fae62d114769bbf2a179198b5c # v3 with: path: .\.sonar\scanner key: ${{ runner.os }}-sonar-scanner