[CVE-2023-30853] bump versions of gradle-build-action (#163)

Author: agavra

.github/actions/gradle-build-and-publish/action.yaml

@@ -30,24 +30,24 @@ runs:
   using: composite
   steps:
     - name: "Gradle: Build & Test"
-      uses: gradle/gradle-build-action@v2
+      uses: gradle/gradle-build-action@v2.9.0
       with:
         arguments: :${{ inputs.module }}:build
 
     - name: "Gradle: Release Version"
       if: ${{ inputs.force_version == 'None' }}
-      uses: gradle/gradle-build-action@v2
+      uses: gradle/gradle-build-action@v2.9.0
       with:
         arguments: :${{ inputs.module }}:release
 
     - name: "Gradle: Release Version (forced)"
       if: ${{ inputs.force_version != 'None' }}
-      uses: gradle/gradle-build-action@v2
+      uses: gradle/gradle-build-action@v2.9.0
       with:
         arguments: :${{ inputs.module }}:release -Prelease.forceVersion=${{ inputs.force_version }}
 
     - name: "Gradle: Publish Artifacts"
-      uses: gradle/gradle-build-action@v2
+      uses: gradle/gradle-build-action@v2.9.0
       with:
         arguments: :${{ inputs.module }}:publish # publish to both S3 and Sonatype OSSRH
       env:

.github/workflows/github-main.yaml

@@ -49,12 +49,12 @@ jobs:
           public: "true"
 
       - name: "Gradle Build"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
         with:
           arguments: build
 
       - name: "Publish To S3"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
         with:
           arguments: publishMavenJavaPublicationToS3Repository # publish only to S3
         if: github.ref == 'refs/heads/main'
@@ -68,7 +68,7 @@ jobs:
         uses: docker/setup-buildx-action@v2
 
       - name: "Publish Images"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
         with:
           arguments: pushCRD pushDockerMultiArch pushHelm -PdockerRegistry=${{ steps.login-ecr-public.outputs.public-registry }}/j8q9y0n6 -PhelmRegistry=${{ steps.login-ecr-public.outputs.public-registry }}/j8q9y0n6
         #if: github.ref == 'refs/heads/main'

.github/workflows/github-pr.yaml

@@ -41,7 +41,7 @@ jobs:
           public: "true"
 
       - name: "Setup Gradle"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
 
       - name: "Build & Test"
         run: ./gradlew build buildDocker

.github/workflows/github-publish.yaml

@@ -74,15 +74,15 @@ jobs:
         uses: docker/setup-buildx-action@v2
 
       - name: "Publish Operator Images"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
         if: ${{ inputs.module == 'operator' }}
         with:
           arguments: operator:pushCRD operator:pushDockerMultiArch operator:pushHelm -PdockerRegistry=${{ steps.login-ecr-public.outputs.public-registry }}/j8q9y0n6 -PhelmRegistry=${{ steps.login-ecr-public.outputs.public-registry }}/j8q9y0n6
         env:
           ECR_REGISTRY: ${{ steps.login-ecr-public.outputs.public-registry }}
 
       - name: "Publish Example Images"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
         if: ${{ inputs.module == 'kafka-client' }}
         with:
           arguments: kafka-client-examples:simple-example:pushDockerMultiArch -PdockerRegistry=${{ steps.login-ecr-public.outputs.public-registry }}/j8q9y0n6 -PhelmRegistry=${{ steps.login-ecr-public.outputs.public-registry }}/j8q9y0n6
@@ -160,6 +160,6 @@ jobs:
           git push
 
       - name: "Increment Version"
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@v2.9.0
         with:
           arguments: :${{ inputs.module }}:markNextVersion -Prelease.incrementer=${{ inputs.increment }}