chore(security): Pin workflow actions to commit SHAs (#241)

auth0 · Aug 15, 2023 · 300ae89 · 300ae89
1 parent b13975b
commit 300ae89
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 7 deletions.
diff --git a/.github/workflows/e2e-tests.yml b/.github/workflows/e2e-tests.yml
@@ -28,7 +28,7 @@ jobs:
           AUTH0_CLIENT_SECRET: ${{ secrets.AUTH0_CLIENT_SECRET }}
 
       - name: Update codecov report
-        uses: codecov/codecov-action@v3
+        uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # [email protected]
         with:
           files: ./coverage.out
           fail_ci_if_error: false

diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml
@@ -5,16 +5,16 @@ on:
   push:
     branches: [main]
   schedule:
-    - cron: '30 0 1,15 * *'
+    - cron: "30 0 1,15 * *"
 
 jobs:
   scan:
     runs-on: ubuntu-latest
-    
+
     steps:
-      - uses: actions/checkout@main
+      - uses: actions/checkout@v3
       - name: Scan for Vulnerabilities in Code
-        uses: Templum/govulncheck-action@main
+        uses: Templum/govulncheck-action@435a35e28c7e56076f6daf838b81c1aa76ee0c95 # [email protected]
         with:
           go-version: 1.19
           package: ./...

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
@@ -27,7 +27,7 @@ jobs:
         run: go build ./...
 
       - name: Check for linting errors
-        uses: golangci/golangci-lint-action@v3
+        uses: golangci/golangci-lint-action@639cd343e1d3b897ff35927a75193d57cfcba299 # [email protected]
         with:
           version: latest
           args: -v -c .golangci.yml
@@ -49,7 +49,7 @@ jobs:
         run: make test
 
       - name: Update codecov report
-        uses: codecov/codecov-action@v3
+        uses: codecov/codecov-action@eaaf4bedf32dbdc6b720b63067d99c4d77d6047d # [email protected]
         with:
           files: ./coverage.out
           fail_ci_if_error: false