diff --git a/docker-ci-image-workflows/build-and-promote-ma/action.yml b/docker-ci-image-workflows/build-and-promote-ma/action.yml index 51d3d0e..ac6734e 100644 --- a/docker-ci-image-workflows/build-and-promote-ma/action.yml +++ b/docker-ci-image-workflows/build-and-promote-ma/action.yml @@ -51,7 +51,7 @@ runs: using: 'composite' steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 - name: Set image name id: image @@ -64,10 +64,10 @@ runs: fi - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3 - name: Log in to Container Registry - uses: docker/login-action@v3 + uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3 with: registry: ${{ inputs.registry }} username: ${{ inputs.registry_username || github.actor }} @@ -136,7 +136,7 @@ runs: - name: Extract metadata id: meta - uses: docker/metadata-action@v5 + uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5 with: images: ${{ inputs.registry }}/${{ steps.image.outputs.name }} tags: | @@ -146,7 +146,7 @@ runs: - name: Build and push MA image id: build - uses: docker/build-push-action@v5 + uses: docker/build-push-action@ca052bb54ab0790a636c9b5f226502c73d547a25 # v5 with: context: ${{ inputs.docker_context }} file: ${{ inputs.dockerfile_path }} @@ -186,7 +186,7 @@ runs: cat main-image-manifest.json - name: Create GitHub Release - uses: actions/github-script@v7 + uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7 with: script: | const fs = require('fs'); @@ -219,7 +219,7 @@ runs: } - name: Upload manifest as artifact - uses: actions/upload-artifact@v4 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4 with: name: main-builded-manifest.zip path: main-image-manifest.json diff --git a/docker-ci-image-workflows/build-pr/action.yml b/docker-ci-image-workflows/build-pr/action.yml index 5ae1994..e168ada 100644 --- a/docker-ci-image-workflows/build-pr/action.yml +++ b/docker-ci-image-workflows/build-pr/action.yml @@ -37,7 +37,7 @@ runs: using: 'composite' steps: - name: Checkout code - uses: actions/checkout@v4 + uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 - name: Set image name id: image @@ -50,10 +50,10 @@ runs: fi - name: Set up Docker Buildx - uses: docker/setup-buildx-action@v3 + uses: docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f # v3 - name: Log in to Container Registry - uses: docker/login-action@v3 + uses: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9 # v3 with: registry: ${{ inputs.registry }} username: ${{ inputs.registry_username || github.actor }} @@ -73,7 +73,7 @@ runs: - name: Extract metadata id: meta - uses: docker/metadata-action@v5 + uses: docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051 # v5 with: images: ${{ inputs.registry }}/${{ steps.image.outputs.name }} tags: | @@ -81,7 +81,7 @@ runs: type=sha,prefix=pr-{{branch}}- - name: Build and push PR image - uses: docker/build-push-action@v5 + uses: docker/build-push-action@ca052bb54ab0790a636c9b5f226502c73d547a25 # v5 with: context: ${{ inputs.docker_context }} file: ${{ inputs.dockerfile_path }} @@ -94,7 +94,7 @@ runs: cache-to: type=gha,mode=max - name: Comment PR with image tags - uses: actions/github-script@v7 + uses: actions/github-script@f28e40c7f34bde8b3046d885e986cb6290c5673b # v7 with: script: | const tags = `${{ steps.meta.outputs.tags }}`.split('\n');