diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index b6ff0177e895e4cb9dfb35b3cfd6f73b3b78abed..94c76335b356b2b72bf27f927cdd681beb1210f4 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -94,7 +94,7 @@ jobs:
run: gh api ${{ env.PR_URL }} | jq -rc '${{ env.JQ_FILTER }}' >> "$GITHUB_OUTPUT"
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
with:
sparse-checkout: ${{ env.SPARSE_CHECKOUT }}
@@ -150,7 +150,7 @@ jobs:
steps:
- name: Checkout code
if: needs.setup.outputs.os-matrix-is-full && runner.os != 'Linux'
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
with:
sparse-checkout: ${{ env.SPARSE_CHECKOUT }}
@@ -172,7 +172,7 @@ jobs:
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -215,7 +215,7 @@ jobs:
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -255,7 +255,7 @@ jobs:
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -279,7 +279,7 @@ jobs:
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -313,7 +313,7 @@ jobs:
include: ${{ fromJSON(needs.setup.outputs.test-shard-matrix) }}
steps:
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -374,7 +374,7 @@ jobs:
if: (success() || failure()) && github.event.pull_request.draft != true
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
with:
sparse-checkout: ${{ env.SPARSE_CHECKOUT }}
@@ -449,7 +449,7 @@ jobs:
if: github.event.pull_request.draft != true
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -476,7 +476,7 @@ jobs:
if: github.event.pull_request.draft != true
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: ./.github/actions/setup-node
@@ -502,7 +502,7 @@ jobs:
steps:
- name: Checkout code
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Setup Node.js
uses: actions/setup-node@5e21ff4d9bc1a8cf6de233a3057d20ec6b3fb69d # v3.8.1
@@ -545,7 +545,7 @@ jobs:
pull-requests: write
steps:
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
with:
fetch-depth: 0 # zero stands for full checkout, which is required for semantic-release
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index 4c845f1feaf74f9048fcdcec57db099c0d1b1186..e3996e3a698db6e46160e6cd87f64d28a4105c31 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -29,7 +29,7 @@ jobs:
if: github.event.pull_request.draft != true
steps:
- name: Checkout repository
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Delete fixtures to suppress false positives
run: |
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
index b5817f29f1f6650e177734cd11b90c34ed8fef2e..e545ec2728b0202f0753b8e97ac553de94acc252 100644
--- a/.github/workflows/dependency-review.yml
+++ b/.github/workflows/dependency-review.yml
@@ -9,7 +9,7 @@ jobs:
runs-on: ubuntu-latest
steps:
- name: 'Checkout Repository'
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: 'Dependency Review'
uses: actions/dependency-review-action@6c5ccdad469c9f8a2996bfecaec55a631a347034 # v3.1.0
diff --git a/.github/workflows/devcontainer.yml b/.github/workflows/devcontainer.yml
index e03e18b05dc9d568e8e53a022d76db70a54aa55c..c310d767a9b8eda66b80de312fc6e436d34433c7 100644
--- a/.github/workflows/devcontainer.yml
+++ b/.github/workflows/devcontainer.yml
@@ -15,7 +15,7 @@ jobs:
if: github.event.pull_request.draft != true
steps:
- name: Checkout
- uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Build and run dev container task
uses: devcontainers/ci@57eaf0c9b518a76872bc429cdceefd65a912309b # v0.3.1900000329
diff --git a/.github/workflows/release-npm.yml b/.github/workflows/release-npm.yml
index 08f54b8fd7b0ebd10118804d0926615465711335..8389a77d34b6e502cff2b4d82f74d91e9030bd3b 100644
--- a/.github/workflows/release-npm.yml
+++ b/.github/workflows/release-npm.yml
@@ -39,7 +39,7 @@ jobs:
echo "NPM_TAG=${{ github.event.inputs.tag }}" >> "$GITHUB_ENV"
fi
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
with:
ref: ${{ env.GIT_SHA }}
diff --git a/.github/workflows/update-data.yml b/.github/workflows/update-data.yml
index 8c52a2ec44df67452bb828943970b18eb07155ef..2c0f57cf532619ff4bf641c4d46f796f3001ebe8 100644
--- a/.github/workflows/update-data.yml
+++ b/.github/workflows/update-data.yml
@@ -15,7 +15,7 @@ jobs:
update-data:
runs-on: ubuntu-latest
steps:
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Enable corepack
shell: bash
diff --git a/.github/workflows/ws_scan.yaml b/.github/workflows/ws_scan.yaml
index e9b2f4185515eece69fe7b84ceab9bedae504f4a..2ffeae548b1019f563a8db9f7f976d8495a07ace 100644
--- a/.github/workflows/ws_scan.yaml
+++ b/.github/workflows/ws_scan.yaml
@@ -11,7 +11,7 @@ jobs:
WS_SCAN:
runs-on: ubuntu-latest
steps:
- - uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0
+ - uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
- name: Download UA
run: curl -LJO https://github.com/whitesource/unified-agent-distribution/releases/latest/download/wss-unified-agent.jar