From ee0b9d23c53b98aa28a7823f68f17b298a22a005 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Thu, 15 Jul 2021 09:00:23 +0200
Subject: [PATCH] chore(deps): pin dependencies (#10849)
Co-authored-by: Renovate Bot <bot@renovateapp.com>
---
.github/workflows/build-pr.yml | 12 ++++++------
.github/workflows/build.yml | 18 +++++++++---------
.github/workflows/codeql-analysis.yml | 8 ++++----
.github/workflows/label-actions.yml | 2 +-
.github/workflows/lock.yml | 2 +-
.github/workflows/release-npm.yml | 4 ++--
.github/workflows/stale-action.yml | 2 +-
.github/workflows/ws_scan.yaml | 2 +-
8 files changed, 25 insertions(+), 25 deletions(-)
diff --git a/.github/workflows/build-pr.yml b/.github/workflows/build-pr.yml
index 3b0103b264..9b7c0e4309 100644
--- a/.github/workflows/build-pr.yml
+++ b/.github/workflows/build-pr.yml
@@ -16,18 +16,18 @@ jobs:
timeout-minutes: 30
steps:
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
with:
fetch-depth: 2
- name: Set up Node.js ${{ env.NODE_VERSION }}
- uses: actions/setup-node@v2.2.0
+ uses: actions/setup-node@38d90ce44d5275ad62cc48384b3d8a58c500bb5f # renovate: tag=v2.2.0
with:
node-version: ${{ env.NODE_VERSION }}
cache: yarn
- name: Set up Python ${{ env.PYTHON_VERSION }}
- uses: actions/setup-python@v2.2.2
+ uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # renovate: tag=v2.2.2
with:
python-version: ${{ env.PYTHON_VERSION }}
@@ -50,7 +50,7 @@ jobs:
run: yarn jest --maxWorkers=2 --ci
- name: Codecov
- uses: codecov/codecov-action@v1.5.2
+ uses: codecov/codecov-action@29386c70ef20e286228c72b668a06fd0e8399192 # renovate: tag=v1.5.2
if: always()
# build after tests to exclude files
@@ -67,12 +67,12 @@ jobs:
timeout-minutes: 15
steps:
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
with:
fetch-depth: 2
- name: Set up Node.js ${{ env.NODE_VERSION }}
- uses: actions/setup-node@v2.2.0
+ uses: actions/setup-node@38d90ce44d5275ad62cc48384b3d8a58c500bb5f # renovate: tag=v2.2.0
with:
node-version: ${{ env.NODE_VERSION }}
cache: yarn
diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml
index 466f04b67c..636e10b6b6 100644
--- a/.github/workflows/build.yml
+++ b/.github/workflows/build.yml
@@ -40,24 +40,24 @@ jobs:
JAVA_VERSION: ${{ matrix.java-version }}
steps:
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
with:
fetch-depth: 2
- name: Set up Node.js ${{ env.NODE_VERSION }}
- uses: actions/setup-node@v2.2.0
+ uses: actions/setup-node@38d90ce44d5275ad62cc48384b3d8a58c500bb5f # renovate: tag=v2.2.0
with:
node-version: ${{ env.NODE_VERSION }}
cache: yarn
- name: Set up Python ${{ env.PYTHON_VERSION }}
- uses: actions/setup-python@v2.2.2
+ uses: actions/setup-python@dc73133d4da04e56a135ae2246682783cc7c7cb6 # renovate: tag=v2.2.2
with:
python-version: ${{ env.PYTHON_VERSION }}
- name: Set up Java ${{ env.JAVA_VERSION }}
if: env.NODE_VERSION == '14'
- uses: actions/setup-java@v2.1.0
+ uses: actions/setup-java@d9126d7df2f1b080b603441eaf5810ced3614e78 # renovate: tag=v2.1.0
with:
java-version: ${{ env.JAVA_VERSION }}
distribution: 'adopt'
@@ -87,7 +87,7 @@ jobs:
run: yarn jest --maxWorkers=2 --ci --coverage ${{ env.coverage }}
- name: Codecov
- uses: codecov/codecov-action@v1.5.2
+ uses: codecov/codecov-action@29386c70ef20e286228c72b668a06fd0e8399192 # renovate: tag=v1.5.2
if: always() && env.coverage == 'true'
# build after tests to exclude build files from tests
@@ -105,12 +105,12 @@ jobs:
timeout-minutes: 15
steps:
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
with:
fetch-depth: 2
- name: Set up Node.js ${{ env.NODE_VERSION }}
- uses: actions/setup-node@v2.2.0
+ uses: actions/setup-node@38d90ce44d5275ad62cc48384b3d8a58c500bb5f # renovate: tag=v2.2.0
with:
node-version: ${{ env.NODE_VERSION }}
cache: yarn
@@ -149,12 +149,12 @@ jobs:
steps:
# full checkout for semantic-release
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
with:
fetch-depth: 0
- name: Set up Node.js ${{ env.NODE_VERSION }}
- uses: actions/setup-node@v2.2.0
+ uses: actions/setup-node@38d90ce44d5275ad62cc48384b3d8a58c500bb5f # renovate: tag=v2.2.0
with:
node-version: ${{ env.NODE_VERSION }}
cache: yarn
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
index fb5c769a20..bebdbd6b1e 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -18,11 +18,11 @@ jobs:
steps:
- name: Checkout repository
- uses: actions/checkout@v2.3.4
+ uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@v1.0.5
+ uses: github/codeql-action/init@500dad96d7fcdc698d0155829f2ae8bb6f3b79a9 # renovate: tag=v1.0.5
# Override language selection by uncommenting this and choosing your languages
# with:
@@ -30,7 +30,7 @@ jobs:
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
# If this step fails, then you should remove it and run the build manually (see below)
- name: Autobuild
- uses: github/codeql-action/autobuild@v1.0.5
+ uses: github/codeql-action/autobuild@500dad96d7fcdc698d0155829f2ae8bb6f3b79a9 # renovate: tag=v1.0.5
# â„¹ï¸ Command-line programs to run using the OS shell.
# 📚 https://git.io/JvXDl
@@ -44,4 +44,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@v1.0.5
+ uses: github/codeql-action/analyze@500dad96d7fcdc698d0155829f2ae8bb6f3b79a9 # renovate: tag=v1.0.5
diff --git a/.github/workflows/label-actions.yml b/.github/workflows/label-actions.yml
index 8fb6982907..9134f15354 100644
--- a/.github/workflows/label-actions.yml
+++ b/.github/workflows/label-actions.yml
@@ -12,7 +12,7 @@ jobs:
reaction:
runs-on: ubuntu-latest
steps:
- - uses: dessant/label-actions@v2.1.3
+ - uses: dessant/label-actions@201c706f66d13baf871b4af784bbdb7555e983b4 # renovate: tag=v2.1.3
with:
github-token: ${{ github.token }}
process-only: 'issues'
diff --git a/.github/workflows/lock.yml b/.github/workflows/lock.yml
index 9a5130094f..58cf73ed45 100644
--- a/.github/workflows/lock.yml
+++ b/.github/workflows/lock.yml
@@ -16,7 +16,7 @@ jobs:
lock:
runs-on: ubuntu-latest
steps:
- - uses: dessant/lock-threads@v2.1.1
+ - uses: dessant/lock-threads@1621939cecf8586399a6b60d2a7af9469232b5b6 # renovate: tag=v2.1.1
if: github.repository == 'renovatebot/renovate'
with:
github-token: ${{ github.token }}
diff --git a/.github/workflows/release-npm.yml b/.github/workflows/release-npm.yml
index 9cc3c708db..4a1597cd53 100644
--- a/.github/workflows/release-npm.yml
+++ b/.github/workflows/release-npm.yml
@@ -35,12 +35,12 @@ jobs:
echo "NPM_TAG=${{ github.event.inputs.tag }}" >> $GITHUB_ENV
fi
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
with:
ref: ${{ env.GIT_SHA }}
- name: Set up Node.js ${{ env.NODE_VERSION }}
- uses: actions/setup-node@v2.2.0
+ uses: actions/setup-node@38d90ce44d5275ad62cc48384b3d8a58c500bb5f # renovate: tag=v2.2.0
with:
node-version: ${{ env.NODE_VERSION }}
cache: yarn
diff --git a/.github/workflows/stale-action.yml b/.github/workflows/stale-action.yml
index fe80a3be64..eb71acf29d 100644
--- a/.github/workflows/stale-action.yml
+++ b/.github/workflows/stale-action.yml
@@ -9,7 +9,7 @@ jobs:
stale:
runs-on: ubuntu-latest
steps:
- - uses: actions/stale@v3.0.19
+ - uses: actions/stale@98ed4cb500039dbcccf4bd9bedada4d0187f2757 # renovate: tag=v3.0.19
with:
# Rate limit per run, (defaults to 30, but we've increased it to 40 for now).
operations-per-run: 40
diff --git a/.github/workflows/ws_scan.yaml b/.github/workflows/ws_scan.yaml
index b4b6003775..58d467cfa7 100644
--- a/.github/workflows/ws_scan.yaml
+++ b/.github/workflows/ws_scan.yaml
@@ -8,7 +8,7 @@ jobs:
WS_SCAN:
runs-on: ubuntu-latest
steps:
- - uses: actions/checkout@v2.3.4
+ - uses: actions/checkout@5a4ac9002d0be2fb38bd78e4b4dbde5606d7042f # renovate: tag=v2.3.4
- name: Download UA
run: curl -LJO https://github.com/whitesource/unified-agent-distribution/releases/latest/download/wss-unified-agent.jar
--
GitLab