diff --git a/.github/workflows/docker.yaml b/.github/workflows/docker.yaml index 723ad427c3..e8ec782557 100644 --- a/.github/workflows/docker.yaml +++ b/.github/workflows/docker.yaml @@ -126,14 +126,14 @@ jobs: with: platforms: ${{ matrix.platform }} - name: Login to DockerHub - uses: docker/login-action@v4 + uses: docker/login-action@v4.1.0 if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository with: username: ${{ vars.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} # zizmor: ignore[secrets-outside-env] TODO: drop once super-linter ships zizmor >=1.24.0, then the allowlist in zizmor.yaml takes over - name: Build id: build - uses: docker/bake-action@v7 + uses: docker/bake-action@v7.1.0 with: pull: true load: ${{ !fromJson(needs.prepare.outputs.push) }} @@ -229,7 +229,7 @@ jobs: - name: Set up Docker Buildx uses: docker/setup-buildx-action@v4 - name: Login to DockerHub - uses: docker/login-action@v4 + uses: docker/login-action@v4.1.0 if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository with: username: ${{ vars.DOCKERHUB_USERNAME }} diff --git a/.github/workflows/static.yaml b/.github/workflows/static.yaml index f4b7dc5f94..b9daf8681f 100644 --- a/.github/workflows/static.yaml +++ b/.github/workflows/static.yaml @@ -119,7 +119,7 @@ jobs: with: platforms: ${{ matrix.platform }} - name: Login to DockerHub - uses: docker/login-action@v4 + uses: docker/login-action@v4.1.0 if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository with: username: ${{ vars.DOCKERHUB_USERNAME }} @@ -139,7 +139,7 @@ jobs: REF: ${{ needs.prepare.outputs.ref }} - name: Build id: build - uses: docker/bake-action@v7 + uses: docker/bake-action@v7.1.0 with: pull: true load: ${{ !fromJson(needs.prepare.outputs.push) || matrix.debug || matrix.mimalloc }} @@ -287,14 +287,14 @@ jobs: with: platforms: ${{ matrix.platform }} - name: Login to DockerHub - uses: docker/login-action@v4 + uses: docker/login-action@v4.1.0 if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository with: username: ${{ vars.DOCKERHUB_USERNAME }} password: ${{ secrets.DOCKERHUB_TOKEN }} # zizmor: ignore[secrets-outside-env] TODO: drop once super-linter ships zizmor >=1.24.0, then the allowlist in zizmor.yaml takes over - name: Build id: build - uses: docker/bake-action@v7 + uses: docker/bake-action@v7.1.0 with: pull: true load: ${{ !fromJson(needs.prepare.outputs.push) }} @@ -399,7 +399,7 @@ jobs: - name: Set up Docker Buildx uses: docker/setup-buildx-action@v4 - name: Login to DockerHub - uses: docker/login-action@v4 + uses: docker/login-action@v4.1.0 if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name == github.repository with: username: ${{ vars.DOCKERHUB_USERNAME }} diff --git a/.github/workflows/tests.yaml b/.github/workflows/tests.yaml index e2b341e414..9e28e17e98 100644 --- a/.github/workflows/tests.yaml +++ b/.github/workflows/tests.yaml @@ -76,12 +76,12 @@ jobs: - name: Run integrations tests run: ./reload_test.sh - name: Lint Go code - uses: golangci/golangci-lint-action@v9 + uses: golangci/golangci-lint-action@v9.2.0 if: matrix.php-versions == '8.5' with: version: latest - name: Lint Caddy module Go code - uses: golangci/golangci-lint-action@v9 + uses: golangci/golangci-lint-action@v9.2.0 if: matrix.php-versions == '8.5' with: version: latest