eraser-dev · salaxander · Sep 27, 2023 · Sep 26, 2023
@@ -29,7 +29,7 @@ jobs:
  egress-policy: audit
 
  - name: Checkout repository
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608
 
  - name: Initialize CodeQL
  uses: github/codeql-action/init@cdcdbb579706841c47f7063dda365e292e5cad7a

@@ -14,7 +14,7 @@ jobs:
  egress-policy: audit
 
  - name: 'Checkout Repository'
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608
 
  - name: 'Dependency Review'
  uses: actions/dependency-review-action@f6fff72a3217f580d5afd49a46826795305b63c7
@@ -27,7 +27,7 @@ jobs:
  run:
  working-directory: docs
  steps:
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
  - name: Harden Runner
  uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09

@@ -35,7 +35,7 @@ jobs:
  ~/.cache/go-build
  - uses: crazy-max/ghaction-github-runtime@056b8ec6661ce03a987ab8643a0edc346ae63fe3 # v2.2.0
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - run: 'echo ${{ inputs.bucket-id }}'
  - name: Set env
  run: |
@@ -76,7 +76,7 @@ jobs:
  ~/.cache/go-build
  - uses: crazy-max/ghaction-github-runtime@056b8ec6661ce03a987ab8643a0edc346ae63fe3 # v2.2.0
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Set env
  run: |
  echo TRIVY_SCANNER_REPO=scanner >> $GITHUB_ENV
@@ -116,7 +116,7 @@ jobs:
  ~/.cache/go-build
  - uses: crazy-max/ghaction-github-runtime@056b8ec6661ce03a987ab8643a0edc346ae63fe3 # v2.2.0
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Set env
  run: |
  echo MANAGER_REPO=manager >> $GITHUB_ENV
@@ -156,7 +156,7 @@ jobs:
  ~/.cache/go-build
  - uses: crazy-max/ghaction-github-runtime@056b8ec6661ce03a987ab8643a0edc346ae63fe3 # v2.2.0
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Set env
  run: |
  echo COLLECTOR_REPO=collector >> $GITHUB_ENV

@@ -24,7 +24,7 @@ jobs:
  egress-policy: audit
 
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - id: set-test-matrix
  run: |
  readarray -d '' test_dirs < <(find ./test/e2e/tests -mindepth 1 -type d -print0)
@@ -51,7 +51,7 @@ jobs:
  with:
  egress-policy: audit
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Fetch Build Artifacts
  uses: actions/download-artifact@9bc31d5ccc31df68ecc42ccf4149144866c47d8a # v3.0.2
  with:

@@ -59,7 +59,7 @@ jobs:
  echo "TARGET_BRANCH=main" >> ${GITHUB_ENV}
  fi
 
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744
+ - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608
  with:
  fetch-depth: 0
 

@@ -25,7 +25,7 @@ jobs:
  egress-policy: audit
 
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
  - name: Setup buildx instance
  uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2.10.0

@@ -43,7 +43,7 @@ jobs:
 
  - name: Check out code
  if: github.event_name == 'schedule' || github.event.inputs.version == ''
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
  - name: Build image
  if: github.event_name == 'schedule' || github.event.inputs.version == ''

@@ -30,7 +30,7 @@ jobs:
  egress-policy: audit
 
  - name: "Checkout code"
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.1.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v3.1.0
  with:
  persist-credentials: false
 

@@ -48,7 +48,7 @@ jobs:
  uses: step-security/harden-runner@8ca2b8b2ece13480cda6dacd3511b49857a23c09
  with:
  egress-policy: audit
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Set up Go 1.20
  uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
  with:
@@ -102,7 +102,7 @@ jobs:
  ~/go/pkg/mod
  ~/.cache/go-build
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Unit test
  run: make test
  - name: Codecov upload
@@ -122,7 +122,7 @@ jobs:
  with:
  egress-policy: audit
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
  - name: Set up Go 1.20
  uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
  with:
@@ -147,7 +147,7 @@ jobs:
  egress-policy: audit
 
  - name: Check out code into the Go module directory
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@8ade135a41bc03ea155e62e844d188df1ea18608 # v4.1.0
 
  - name: Get repo
  run: |