diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml index 016e346331..b3dff5888e 100644 --- a/.github/workflows/codeql-analysis.yml +++ b/.github/workflows/codeql-analysis.yml @@ -51,7 +51,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6 + uses: github/codeql-action/init@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -76,4 +76,4 @@ jobs: # make release - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@4dd16135b69a43b6c8efb853346f8437d92d3c93 # v3.26.6 + uses: github/codeql-action/analyze@294a9d92911152fe08befb9ec03e240add280cb3 # v3.26.8 diff --git a/.github/workflows/formatting.yml b/.github/workflows/formatting.yml index 337ef43463..dc99b6d2e2 100644 --- a/.github/workflows/formatting.yml +++ b/.github/workflows/formatting.yml @@ -36,7 +36,7 @@ jobs: run: | python cve_bin_tool/format_checkers.py - name: Create Pull Request - uses: peter-evans/create-pull-request@c5a7806660adbe173f04e3e038b0ccdcd758773c # v6.1.0 + uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5 with: commit-message: "chore: update checkers table" title: "chore: update checkers table" diff --git a/.github/workflows/sbom.yml b/.github/workflows/sbom.yml index 43954e9ea7..05fe91de08 100644 --- a/.github/workflows/sbom.yml +++ b/.github/workflows/sbom.yml @@ -62,7 +62,7 @@ jobs: cp cve-bin-tool-py${{ matrix.python }}.json sbom/cve-bin-tool-py${{ matrix.python }}.json - name: Create Pull Request if: ${{ steps.diff-sbom.outputs.changed }} - uses: peter-evans/create-pull-request@c5a7806660adbe173f04e3e038b0ccdcd758773c # v6.1.0 + uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5 with: commit-message: "chore: update SBOM for Python ${{ matrix.python }}" title: "chore: update SBOM for Python ${{ matrix.python }}" diff --git a/.github/workflows/update-js-dependencies.yml b/.github/workflows/update-js-dependencies.yml index 7911a0a48d..27b1081df7 100644 --- a/.github/workflows/update-js-dependencies.yml +++ b/.github/workflows/update-js-dependencies.yml @@ -54,7 +54,7 @@ jobs: run: python -m pytest -v -n auto test/test_html.py - name: Create Pull Request - uses: peter-evans/create-pull-request@c5a7806660adbe173f04e3e038b0ccdcd758773c # v6.1.0 + uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5 with: commit-message: "chore: update js dependencies" title: "chore: update js dependencies" diff --git a/.github/workflows/update-pre-commit.yml b/.github/workflows/update-pre-commit.yml index 39aefacd56..23a58da58f 100644 --- a/.github/workflows/update-pre-commit.yml +++ b/.github/workflows/update-pre-commit.yml @@ -48,7 +48,7 @@ jobs: python .github/workflows/update-dev-requirements.py - name: Create Pull Request - uses: peter-evans/create-pull-request@c5a7806660adbe173f04e3e038b0ccdcd758773c # v6.1.0 + uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5 with: commit-message: "chore: update pre-commit config" title: "chore: update pre-commit config" diff --git a/.github/workflows/update-spdx-header.yml b/.github/workflows/update-spdx-header.yml index f2baa9cc5b..68cde73344 100644 --- a/.github/workflows/update-spdx-header.yml +++ b/.github/workflows/update-spdx-header.yml @@ -33,7 +33,7 @@ jobs: sed -i "s/[0-9]\{4\}/$(date +%Y)/" spdx_header.txt - name: Create Pull Request - uses: peter-evans/create-pull-request@c5a7806660adbe173f04e3e038b0ccdcd758773c # v6.1.0 + uses: peter-evans/create-pull-request@5e914681df9dc83aa4e4905692ca88beb2f9e91f # v7.0.5 with: commit-message: 'chore: update spdx header' title: 'chore: update spdx header'