From 2a02e8d572dc97d9e369cd5487c4b2411c1dcbbd Mon Sep 17 00:00:00 2001 From: Cyrill Troxler Date: Mon, 23 Mar 2026 18:52:53 +0000 Subject: [PATCH] ci: pin action versions --- .github/workflows/build_push.yml | 8 ++++---- .github/workflows/build_push_commit.yml | 8 ++++---- .github/workflows/build_push_criu.yml | 6 +++--- .github/workflows/build_push_freezer.yml | 6 +++--- .github/workflows/ci.yml | 24 ++++++++++++------------ 5 files changed, 26 insertions(+), 26 deletions(-) diff --git a/.github/workflows/build_push.yml b/.github/workflows/build_push.yml index 547dfdc..827526b 100644 --- a/.github/workflows/build_push.yml +++ b/.github/workflows/build_push.yml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Log in to the Container registry uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1 @@ -29,7 +29,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 - name: Extract metadata for installer id: meta_installer @@ -44,7 +44,7 @@ jobs: images: ${{ env.REGISTRY }}/${{ env.MANAGER_IMAGE_NAME }} - name: Build and push installer - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: context: . file: ./cmd/installer/Dockerfile @@ -54,7 +54,7 @@ jobs: labels: ${{ steps.meta_installer.outputs.labels }} - name: Build and push manager - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: context: . file: ./cmd/manager/Dockerfile diff --git a/.github/workflows/build_push_commit.yml b/.github/workflows/build_push_commit.yml index 8577526..c83368d 100644 --- a/.github/workflows/build_push_commit.yml +++ b/.github/workflows/build_push_commit.yml @@ -19,7 +19,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Log in to the Container registry uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1 @@ -29,7 +29,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 - name: Extract metadata for installer id: meta_installer @@ -48,7 +48,7 @@ jobs: images: ${{ env.REGISTRY }}/${{ env.MANAGER_IMAGE_NAME }} - name: Build and push installer - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: context: . file: ./cmd/installer/Dockerfile @@ -58,7 +58,7 @@ jobs: labels: ${{ steps.meta_installer.outputs.labels }} - name: Build and push manager - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: context: . file: ./cmd/manager/Dockerfile diff --git a/.github/workflows/build_push_criu.yml b/.github/workflows/build_push_criu.yml index 0b9d358..a853c90 100644 --- a/.github/workflows/build_push_criu.yml +++ b/.github/workflows/build_push_criu.yml @@ -17,7 +17,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Log in to the Container registry uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1 @@ -27,7 +27,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 - name: Extract metadata for criu id: meta_criu @@ -36,7 +36,7 @@ jobs: images: ${{ env.REGISTRY }}/${{ env.CRIU_IMAGE_NAME }} - name: Build and push criu - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: context: . file: ./criu/Dockerfile diff --git a/.github/workflows/build_push_freezer.yml b/.github/workflows/build_push_freezer.yml index e20910a..f171994 100644 --- a/.github/workflows/build_push_freezer.yml +++ b/.github/workflows/build_push_freezer.yml @@ -16,7 +16,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@v4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Log in to the Container registry uses: docker/login-action@65b78e6e13532edd9afa3aa52ac7964289d1a9c1 @@ -26,7 +26,7 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 - name: Extract metadata for freezer id: meta_freezer @@ -35,7 +35,7 @@ jobs: images: ${{ env.REGISTRY }}/${{ env.FREEZER_IMAGE_NAME }} - name: Build and push freezer - uses: docker/build-push-action@v4 + uses: docker/build-push-action@0a97817b6ade9f46837855d676c4cca3a2471fc9 # v4 with: context: . file: ./cmd/freezer/Dockerfile diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index 11f7633..b260089 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -6,14 +6,14 @@ jobs: staticcheck: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Set up Go - uses: actions/setup-go@v4 + uses: actions/setup-go@7b8cf10d4e4a01d4992d18a89f4d7dc5a3e6d6f4 # v4 with: go-version: "1.25" - - uses: dominikh/staticcheck-action@v1.4.0 + - uses: dominikh/staticcheck-action@024238d2898c874f26d723e7d0ff4308c35589a2 # v1.4.0 with: install-go: false version: "2025.1.1" @@ -24,10 +24,10 @@ jobs: matrix: os: [ubuntu-24.04, ubuntu-24.04-arm] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Set up Go - uses: actions/setup-go@v4 + uses: actions/setup-go@7b8cf10d4e4a01d4992d18a89f4d7dc5a3e6d6f4 # v4 with: go-version: "1.25" @@ -37,15 +37,15 @@ jobs: build: runs-on: ubuntu-24.04 steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 with: install: true - name: Set up Go - uses: actions/setup-go@v4 + uses: actions/setup-go@7b8cf10d4e4a01d4992d18a89f4d7dc5a3e6d6f4 # v4 with: go-version: "1.25" @@ -55,7 +55,7 @@ jobs: go install github.com/containerd/ttrpc/cmd/protoc-gen-go-ttrpc@v1.2.7 - name: Install Protoc - uses: arduino/setup-protoc@v3 + uses: arduino/setup-protoc@c65c819552d16ad3c9b72d9dfd5ba5237b9c906b # v3 with: version: "32.1" repo-token: ${{ secrets.GITHUB_TOKEN }} @@ -75,15 +75,15 @@ jobs: matrix: os: [ubuntu-24.04, ubuntu-24.04-arm] steps: - - uses: actions/checkout@v4 + - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v2 + uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55 # v2 with: install: true - name: Set up Go - uses: actions/setup-go@v4 + uses: actions/setup-go@7b8cf10d4e4a01d4992d18a89f4d7dc5a3e6d6f4 # v4 with: go-version: "1.25"