diff --git a/.github/workflows/docker-build.yml b/.github/workflows/docker-build.yml
index 69287b3c90307155164f367954f697c659a5d6c5..23067f0a8ae3e15f2e266e665c3bd7c747009c5f 100644
--- a/.github/workflows/docker-build.yml
+++ b/.github/workflows/docker-build.yml
@@ -78,7 +78,7 @@ jobs:
run: echo "TIMESTAMP=$(git log -1 --pretty=%ct)" >> $GITHUB_ENV
- name: Build Testimage
- uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1 # v6
+ uses: docker/build-push-action@1dc73863535b631f98b2378be8619f83b136f4a0 # v6
env:
SOURCE_DATE_EPOCH: ${{ env.TIMESTAMP }}
with:
@@ -92,7 +92,7 @@ jobs:
run: docker run -v "./tests/selftest.sh:/selftest.sh" "${{ env.TEST_TAG }}" ./selftest.sh
- name: Build and push
- uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1 # v6
+ uses: docker/build-push-action@1dc73863535b631f98b2378be8619f83b136f4a0 # v6
id: docker-build
env:
SOURCE_DATE_EPOCH: ${{ env.TIMESTAMP }}
@@ -129,7 +129,7 @@ jobs:
severity: "CRITICAL,HIGH"
- name: Upload Trivy scan results to GitHub Security tab
- uses: github/codeql-action/upload-sarif@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3
+ uses: github/codeql-action/upload-sarif@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3
if: ${{ github.event_name != 'pull_request' }}
with:
sarif_file: "trivy-results.sarif"
diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml
index e32339c486224de3d4fd8416fe3f21ab510d1219..e9de60a19d54ad3dfeb9a580c26c6ac8e16fc9ca 100644
--- a/.github/workflows/security.yml
+++ b/.github/workflows/security.yml
@@ -30,6 +30,6 @@ jobs:
severity: 'CRITICAL,HIGH,MEDIUM'
- name: Upload Trivy scan results to GitHub Security tab
- uses: github/codeql-action/upload-sarif@60168efe1c415ce0f5521ea06d5c2062adbeed1b # v3
+ uses: github/codeql-action/upload-sarif@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3
with:
sarif_file: 'trivy-results-fs.sarif'