diff --git a/.github/workflows/biome-lint.yml b/.github/workflows/biome-lint.yml index 14f9157c..29fcb807 100644 --- a/.github/workflows/biome-lint.yml +++ b/.github/workflows/biome-lint.yml @@ -15,7 +15,7 @@ jobs: steps: # Checkout the repository so the workflow has access to the code - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 # Run the run-biome.sh script - name: Run run-biome.sh diff --git a/.github/workflows/build-push.yml b/.github/workflows/build-push.yml index dc0a4f6d..650a4834 100644 --- a/.github/workflows/build-push.yml +++ b/.github/workflows/build-push.yml @@ -39,7 +39,7 @@ jobs: ref: ${{ github.event.workflow_run.head_branch }} - uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0 with: - node-version: 22 + node-version: 22.21.1 - name: Installing packages run: cd performance && npm ci - name: Generating lighthouse reports for PR... @@ -116,7 +116,7 @@ jobs: fi fi done - - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0 + - uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 if: ${{ !cancelled() }} with: name: lighthouse-reports-pr diff --git a/.github/workflows/commit-lint.yml b/.github/workflows/commit-lint.yml index 61dc9d65..ea6bc187 100644 --- a/.github/workflows/commit-lint.yml +++ b/.github/workflows/commit-lint.yml @@ -12,7 +12,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Check Commit Messages - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7.1.0 with: script: | const excludedBotIds = [ @@ -86,7 +86,7 @@ jobs: } - name: Create PR comment on bad commit message - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7.1.0 if: ${{ failure() && !github.event.pull_request.draft }} with: script: | diff --git a/.github/workflows/fossa.yml b/.github/workflows/fossa.yml index 350286c9..c39a7bf5 100644 --- a/.github/workflows/fossa.yml +++ b/.github/workflows/fossa.yml @@ -22,9 +22,9 @@ jobs: if: ${{ github.event.repository.fork == false }} steps: - name: Checkout Repository - uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2 # v4.2.2 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0 - name: Scan - uses: fossas/fossa-action@93a52ecf7c3ac7eb40f5de77fd69b1a19524de94 # v1.5.0 + uses: fossas/fossa-action@3ebcea1862c6ffbd5cf1b4d0bd6b3fe7bd6f2cac # v1.7.0 with: api-key: ${{ secrets.FOSSA_TOKEN }} \ No newline at end of file diff --git a/.github/workflows/lighthouse.yml b/.github/workflows/lighthouse.yml index e8f4d7be..9766753e 100644 --- a/.github/workflows/lighthouse.yml +++ b/.github/workflows/lighthouse.yml @@ -20,7 +20,7 @@ jobs: ref: ${{ github.event.workflow_run.head_branch }} - uses: actions/setup-node@a0853c24544627f65ddf259abe73b1d18a591444 # v5.0.0 with: - node-version: 18 + node-version: 18.20.8 - name: Installing packages run: cd performance && npm ci - name: Get PR number being merged @@ -41,7 +41,7 @@ jobs: GITHUB_PR_NUMBER: ${{ env.GITHUB_PR_NUMBER }} run: | node performance/lighthouse-script.js - - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0 + - uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: lighthouse-reports-main path: lighthouse-reports/main-report.json diff --git a/.github/workflows/mend.yml b/.github/workflows/mend.yml index 38fecbc5..2cd71b40 100644 --- a/.github/workflows/mend.yml +++ b/.github/workflows/mend.yml @@ -21,7 +21,7 @@ jobs: runs-on: ubuntu-24.04 steps: - name: Checkout Repository - uses: actions/checkout@85e6279cec87321a52edac9c87bce653a07cf6c2 # v4.2.2 + uses: actions/checkout@08eba0b27e820071cde6df949e0beb9ba4906955 # v4.3.0 with: ref: ${{ inputs.branch && inputs.branch || github.ref }} diff --git a/.github/workflows/nginx-documentation-build.yml b/.github/workflows/nginx-documentation-build.yml index 40923668..366fcc81 100644 --- a/.github/workflows/nginx-documentation-build.yml +++ b/.github/workflows/nginx-documentation-build.yml @@ -21,9 +21,9 @@ jobs: git clone https://github.com/nginx/documentation.git docs - name: Setup Go - uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 + uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5 # v5.5.0 with: - go-version: ">=1.23" + go-version: "1.25.4" - name: Setup Hugo uses: peaceiris/actions-hugo@75d2e84710de30f6ff7268e08f310b60ef14033f # v3.0.0 diff --git a/.github/workflows/playwright.yml b/.github/workflows/playwright.yml index 2b520c06..be1ae99a 100644 --- a/.github/workflows/playwright.yml +++ b/.github/workflows/playwright.yml @@ -18,7 +18,7 @@ jobs: steps: # Checkout the repository so the workflow has access to the code - name: Checkout code - uses: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9 # v3.5.3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - name: Setup Hugo uses: peaceiris/actions-hugo@75d2e84710de30f6ff7268e08f310b60ef14033f # v3.0.0 with: @@ -34,7 +34,7 @@ jobs: echo "Playwright tests failed. Please view the Playwright report to see full error." exit 1 fi - - uses: actions/upload-artifact@6f51ac03b9356f520e9adb1b1b7802705f340c2b # v4.5.0 + - uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 id: artifact-upload if: ${{ !cancelled() && failure() && steps.test-ui.conclusion == 'failure' }} with: @@ -42,7 +42,7 @@ jobs: path: tests/playwright-report/ retention-days: 3 - name: Comment on PR with Playwright report - uses: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea # v7.0.1 + uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7.1.0 if: ${{ failure() }} with: script: |