From 62089befa54ece2795d8ad65c589c18bf76255e1 Mon Sep 17 00:00:00 2001 From: Joshua Li Date: Mon, 23 Mar 2026 23:44:07 -0700 Subject: [PATCH] chore: pin GitHub Actions to full-length commit SHAs --- .github/workflows/changelog-preview.yml | 2 +- .github/workflows/danger.yml | 2 +- .github/workflows/dart_plugin.yml | 6 +++--- .github/workflows/integration-test.yml | 8 ++++---- .github/workflows/release.yml | 2 +- .github/workflows/update-deps.yml | 2 +- 6 files changed, 11 insertions(+), 11 deletions(-) diff --git a/.github/workflows/changelog-preview.yml b/.github/workflows/changelog-preview.yml index 3788b296..2f683bdd 100644 --- a/.github/workflows/changelog-preview.yml +++ b/.github/workflows/changelog-preview.yml @@ -15,5 +15,5 @@ permissions: jobs: changelog-preview: - uses: getsentry/craft/.github/workflows/changelog-preview.yml@v2 + uses: getsentry/craft/.github/workflows/changelog-preview.yml@f4889d04564e47311038ecb6b910fef6b6cf1363 # v2 secrets: inherit diff --git a/.github/workflows/danger.yml b/.github/workflows/danger.yml index 09d4bcb0..edcde912 100644 --- a/.github/workflows/danger.yml +++ b/.github/workflows/danger.yml @@ -8,4 +8,4 @@ jobs: danger: runs-on: ubuntu-latest steps: - - uses: getsentry/github-workflows/danger@v3 + - uses: getsentry/github-workflows/danger@26f565c05d0dd49f703d238706b775883037d76b # v3 diff --git a/.github/workflows/dart_plugin.yml b/.github/workflows/dart_plugin.yml index f2e86de5..75c2b88b 100644 --- a/.github/workflows/dart_plugin.yml +++ b/.github/workflows/dart_plugin.yml @@ -15,11 +15,11 @@ jobs: sdk: [stable, beta] steps: - - uses: dart-lang/setup-dart@v1 + - uses: dart-lang/setup-dart@e51d8e571e22473a2ddebf0ef8a2123f0ab2c02c # v1 with: sdk: ${{ matrix.sdk }} - - uses: actions/checkout@v5 + - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - name: 'Pub Get' run: | @@ -48,7 +48,7 @@ jobs: runs-on: ubuntu-latest timeout-minutes: 15 steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - uses: axel-op/dart-package-analyzer@7a6c3c66bce78d82b729a1ffef2d9458fde6c8d2 #v3 id: analysis with: diff --git a/.github/workflows/integration-test.yml b/.github/workflows/integration-test.yml index d0223742..92f0a720 100644 --- a/.github/workflows/integration-test.yml +++ b/.github/workflows/integration-test.yml @@ -38,11 +38,11 @@ jobs: env: TEST_PLATFORM: ${{ matrix.target }} steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 - uses: subosito/flutter-action@f2c4f6686ca8e8d6e6d0f28410eeef506ed66aff #2.18.0 - - uses: actions/setup-java@v5 + - uses: actions/setup-java@be666c2fcd27ec809703dec50e508c2fdc7f6654 # v5 with: distribution: 'temurin' java-version: '17' @@ -53,7 +53,7 @@ jobs: - run: (flutter --version)[0] | Out-File flutter.version shell: pwsh - - uses: actions/cache@v4 + - uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 with: path: temp/testapp-${{ matrix.target }} key: integration-test-${{ matrix.host }}-${{ matrix.target }}-${{ hashFiles('flutter.version') }} @@ -63,7 +63,7 @@ jobs: - run: dart test --tags integration - - uses: actions/upload-artifact@v5 + - uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4 # v5 if: failure() with: name: ${{ matrix.target }}-build diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4c6a49a1..cd6d8f36 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -23,7 +23,7 @@ jobs: with: app-id: ${{ vars.SENTRY_RELEASE_BOT_CLIENT_ID }} private-key: ${{ secrets.SENTRY_RELEASE_BOT_PRIVATE_KEY }} - - uses: actions/checkout@v5 + - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5 with: token: ${{ steps.token.outputs.token }} fetch-depth: 0 diff --git a/.github/workflows/update-deps.yml b/.github/workflows/update-deps.yml index 962168cf..4f34fd09 100644 --- a/.github/workflows/update-deps.yml +++ b/.github/workflows/update-deps.yml @@ -11,7 +11,7 @@ on: jobs: cli: - uses: getsentry/github-workflows/.github/workflows/updater.yml@v2 + uses: getsentry/github-workflows/.github/workflows/updater.yml@1949ea01ec2da6139d1bcc306c372e6aea76fb72 # v2 with: path: scripts/update-cli.sh name: CLI