diff --git a/.github/workflows/dependabot-automerge.yml b/.github/workflows/dependabot-automerge.yml index bdcd764..aa488eb 100644 --- a/.github/workflows/dependabot-automerge.yml +++ b/.github/workflows/dependabot-automerge.yml @@ -13,7 +13,7 @@ jobs: security-scan: name: Security Vulnerability Scan if: ${{ github.actor == 'dependabot[bot]' }} - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@40a8940a65eab1544a6af759e43d936201a131a2" # v2.0.3 + uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@b00f71e051ddddc6e46a193c31c8c0bf283bf9e6" # v2.1.0 with: scan-args: |- -r diff --git a/.github/workflows/greetings.yml b/.github/workflows/greetings.yml index 1002757..69132d9 100644 --- a/.github/workflows/greetings.yml +++ b/.github/workflows/greetings.yml @@ -9,7 +9,7 @@ jobs: issues: write pull-requests: write steps: - - uses: actions/first-interaction@34f15e814fe48ac9312ccf29db4e74fa767cbab7 #v1.3.0 + - uses: actions/first-interaction@2d4393e6bc0e2efb2e48fba7e06819c3bf61ffc9 #v2.0.0 with: repo-token: ${{ secrets.GITHUB_TOKEN }} issue-message: "Thank you for your first issue ❤️ If it's a feature request, please make sure it's clear what you want, why you want it, and how important it is to you. If you posted a bug report, please make sure it includes as much detail as possible." diff --git a/.github/workflows/issue-validation.yml b/.github/workflows/issue-validation.yml index df211d8..68e5f37 100644 --- a/.github/workflows/issue-validation.yml +++ b/.github/workflows/issue-validation.yml @@ -48,7 +48,7 @@ jobs: - name: Validate issue with AI id: validate - uses: actions/ai-inference@d645f067d89ee1d5d736a5990e327e504d1c5a4a # v1.1.0 + uses: actions/ai-inference@9693b137b6566bb66055a713613bf4f0493701eb # v1.2.3 with: prompt-file: issue_analysis.txt system-prompt: | diff --git a/.github/workflows/osv.yml b/.github/workflows/osv.yml index 6a5f8c6..26f9ebf 100644 --- a/.github/workflows/osv.yml +++ b/.github/workflows/osv.yml @@ -50,7 +50,7 @@ jobs: scan-scheduled: name: Scheduled Security Scan if: ${{ github.event_name == 'push' || github.event_name == 'schedule' }} - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@40a8940a65eab1544a6af759e43d936201a131a2" # v2.0.3 + uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@b00f71e051ddddc6e46a193c31c8c0bf283bf9e6" # v2.1.0 with: scan-args: |- -r @@ -63,7 +63,7 @@ jobs: scan-pr: name: PR Security Scan if: ${{ github.event_name == 'pull_request' || github.event_name == 'merge_group' }} - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@40a8940a65eab1544a6af759e43d936201a131a2" # v2.0.3 + uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@b00f71e051ddddc6e46a193c31c8c0bf283bf9e6" # v2.1.0 with: scan-args: |- -r diff --git a/.github/workflows/pr-checks.yml b/.github/workflows/pr-checks.yml index d769d5b..d73d6b0 100644 --- a/.github/workflows/pr-checks.yml +++ b/.github/workflows/pr-checks.yml @@ -29,7 +29,7 @@ jobs: security-scan: name: Security Vulnerability Scan if: ${{ github.event_name == 'pull_request' || github.event_name == 'merge_group' }} - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@40a8940a65eab1544a6af759e43d936201a131a2" # v2.0.3 + uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable-pr.yml@b00f71e051ddddc6e46a193c31c8c0bf283bf9e6" # v2.1.0 with: scan-args: |- -r diff --git a/.github/workflows/release-notes-generator.yml b/.github/workflows/release-notes-generator.yml index 489ec92..97e08f8 100644 --- a/.github/workflows/release-notes-generator.yml +++ b/.github/workflows/release-notes-generator.yml @@ -58,7 +58,7 @@ jobs: - name: Generate release notes with AI id: generate-notes - uses: actions/ai-inference@d645f067d89ee1d5d736a5990e327e504d1c5a4a # v1.1.0 + uses: actions/ai-inference@9693b137b6566bb66055a713613bf4f0493701eb # v1.2.3 with: prompt-file: commits.txt system-prompt: | diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4316019..0f059ef 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -13,7 +13,7 @@ env: jobs: security-scan: name: Security Vulnerability Scan - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@40a8940a65eab1544a6af759e43d936201a131a2" # v2.0.3 + uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@b00f71e051ddddc6e46a193c31c8c0bf283bf9e6" # v2.1.0 with: scan-args: |- -r @@ -116,7 +116,7 @@ jobs: uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda #v4.1.0 - name: Setup Python - uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b #v5.9.0 + uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 #v5.9.0 with: python-version: '3.11' diff --git a/.github/workflows/rolling-release.yml b/.github/workflows/rolling-release.yml index 12e83e1..e60e20d 100644 --- a/.github/workflows/rolling-release.yml +++ b/.github/workflows/rolling-release.yml @@ -12,7 +12,7 @@ env: jobs: security-scan: name: Security Vulnerability Scan - uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@40a8940a65eab1544a6af759e43d936201a131a2" # v2.0.3 + uses: "google/osv-scanner-action/.github/workflows/osv-scanner-reusable.yml@b00f71e051ddddc6e46a193c31c8c0bf283bf9e6" # v2.1.0 with: scan-args: |- -r @@ -115,7 +115,7 @@ jobs: uses: pnpm/action-setup@a7487c7e89a18df4991f7f222e4898a00d66ddda #v4.1.0 - name: Setup Python - uses: actions/setup-python@0b93645e9fea7318ecaed2b359559ac225c90a2b #v5.9.0 + uses: actions/setup-python@a26af69be951a213d495a4c3e4e4022e16d87065 #v5.9.0 with: python-version: '3.11'