diff --git a/.github/workflows/helm-chart-package.yaml b/.github/workflows/helm-chart-package.yaml index f4017cd..4970d10 100644 --- a/.github/workflows/helm-chart-package.yaml +++ b/.github/workflows/helm-chart-package.yaml @@ -171,7 +171,7 @@ jobs: - name: Run Trivy vulnerability scanner in IaC mode id: trivy continue-on-error: true - uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0 + uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # v0.36.0 with: scan-type: "config" scan-ref: "${{ inputs.CHART_PATH }}/${{ env.CHART_NAME }}-${{ env.CHART_VERSION }}.tgz" @@ -210,7 +210,7 @@ jobs: - name: Send notification on PR if: github.event.pull_request != null - uses: marocchino/sticky-pull-request-comment@d4d6b0936434b21bc8345ad45a440c5f7d2c40ff # v3 + uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3 with: header: "Chart Compatibility Check" recreate: true diff --git a/.github/workflows/publish-terraform-module.yaml b/.github/workflows/publish-terraform-module.yaml index 35b2fc4..fd6dbd9 100644 --- a/.github/workflows/publish-terraform-module.yaml +++ b/.github/workflows/publish-terraform-module.yaml @@ -41,7 +41,7 @@ jobs: - name: Run Trivy vulnerability scanner in IaC mode id: trivy - uses: aquasecurity/trivy-action@57a97c7e7821a5776cebc9bb87c984fa69cba8f1 # v0.35.0 + uses: aquasecurity/trivy-action@ed142fd0673e97e23eac54620cfb913e5ce36c25 # v0.36.0 with: scan-type: "config" scan-ref: "." diff --git a/.github/workflows/release-please.yaml b/.github/workflows/release-please.yaml index ea89808..51fb067 100644 --- a/.github/workflows/release-please.yaml +++ b/.github/workflows/release-please.yaml @@ -40,7 +40,7 @@ jobs: steps: - name: Release Please id: release - uses: googleapis/release-please-action@16a9c90856f42705d54a6fda1823352bdc62cf38 # v4 + uses: googleapis/release-please-action@45996ed1f6d02564a971a2fa1b5860e934307cf7 # v4 with: release-type: ${{ inputs.releaseType }} outputs: