Skip to content

Commit 8500d16

Browse files
renovate[bot]renovate[bot]
authored
Pin dependencies
1 parent 5dee35c commit 8500d16

8 files changed

+35
-35
lines changed

β€Ž.github/workflows/codeql.yml

+5-5
Original file line numberDiff line numberDiff line change
@@ -38,15 +38,15 @@ jobs:
3838

3939
steps:
4040
- name: Checkout repository
41-
uses: actions/checkout@v4
41+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
4242
- name: "β˜•οΈ Setup JDK"
43-
uses: actions/setup-java@v4
43+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
4444
with:
4545
distribution: liberica
4646
java-version: 17
4747
# Initializes the CodeQL tools for scanning.
4848
- name: Initialize CodeQL
49-
uses: github/codeql-action/init@v3
49+
uses: github/codeql-action/init@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3
5050
with:
5151
languages: ${{ matrix.language }}
5252
# If you wish to specify custom queries, you can do so here or in a config file.
@@ -57,7 +57,7 @@ jobs:
5757
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
5858
# If this step fails, then you should remove it and run the build manually (see below)
5959
- name: Autobuild
60-
uses: github/codeql-action/autobuild@v3
60+
uses: github/codeql-action/autobuild@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3
6161

6262
# ℹ️ Command-line programs to run using the OS shell.
6363
# πŸ“š See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
@@ -71,4 +71,4 @@ jobs:
7171
# make release
7272

7373
- name: Perform CodeQL Analysis
74-
uses: github/codeql-action/analyze@v3
74+
uses: github/codeql-action/analyze@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3

β€Ž.github/workflows/gradle.yml

+7-7
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@ jobs:
1818
contents: read
1919
steps:
2020
- name: "πŸ“₯ Checkout repository"
21-
uses: actions/checkout@v4
21+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
2222
- name: "πŸ” Check if we should skip publish"
2323
id: check_prevent_property
2424
run: |
@@ -38,14 +38,14 @@ jobs:
3838
runs-on: ${{ matrix.os }}
3939
steps:
4040
- name: "πŸ“₯ Checkout repository"
41-
uses: actions/checkout@v4
41+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
4242
- name: "β˜•οΈ Setup JDK"
43-
uses: actions/setup-java@v4
43+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
4444
with:
4545
distribution: liberica
4646
java-version: ${{ matrix.java }}
4747
- name: "🐘 Setup Gradle"
48-
uses: gradle/actions/setup-gradle@v4
48+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
4949
with:
5050
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
5151
- name: "πŸ”¨ Build project"
@@ -62,14 +62,14 @@ jobs:
6262
runs-on: ubuntu-latest
6363
steps:
6464
- name: "πŸ“₯ Checkout repository"
65-
uses: actions/checkout@v4
65+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
6666
- name: "β˜•οΈ Setup JDK"
67-
uses: actions/setup-java@v4
67+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
6868
with:
6969
distribution: liberica
7070
java-version: 17
7171
- name: "🐘 Setup Gradle"
72-
uses: gradle/actions/setup-gradle@v4
72+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
7373
with:
7474
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
7575
- name: "πŸ“€ Publish Snapshot Artifacts to Artifactory (repo.grails.org/libs-snapshot-local)"

β€Ž.github/workflows/groovy-joint-workflow.yml

+8-8
Original file line numberDiff line numberDiff line change
@@ -16,17 +16,17 @@ jobs:
1616
groovyVersion: ${{ steps.groovy-version.outputs.value }}
1717
steps:
1818
- name: "β˜•οΈ Setup JDK"
19-
uses: actions/setup-java@v4
19+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
2020
with:
2121
distribution: liberica
2222
java-version: 17
2323
- name: "πŸ—„οΈ Cache local Maven repository"
24-
uses: actions/cache@v4
24+
uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4
2525
with:
2626
path: ~/.m2/repository
2727
key: cache-local-maven-${{ github.sha }}
2828
- name: "πŸ“₯ Checkout Grails Core to fetch Gradle Plugin versions it uses"
29-
uses: actions/checkout@v4
29+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
3030
with:
3131
sparse-checkout-cone-mode: false
3232
sparse-checkout: settings.gradle
@@ -43,7 +43,7 @@ jobs:
4343
- name: "πŸ“₯ Checkout Groovy 4_0_X (Grails 7 and later)"
4444
run: git clone --depth 1 https://github.com/apache/groovy.git -b GROOVY_4_0_X --single-branch
4545
- name: "🐘 Setup Gradle"
46-
uses: gradle/actions/setup-gradle@v4
46+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
4747
with:
4848
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
4949
- name: "πŸ“ Store Groovy version to use when building Grails"
@@ -117,18 +117,18 @@ jobs:
117117
runs-on: ubuntu-latest
118118
steps:
119119
- name: "πŸ“₯ Checkout project"
120-
uses: actions/checkout@v4
120+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
121121
- name: "β˜•οΈ Setup JDK"
122-
uses: actions/setup-java@v4
122+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
123123
with:
124124
distribution: liberica
125125
java-version: 17
126126
- name: "🐘 Setup Gradle"
127-
uses: gradle/actions/setup-gradle@v4
127+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
128128
with:
129129
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
130130
- name: "πŸ—„οΈ Restore local Maven repository from cache"
131-
uses: actions/cache@v4
131+
uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4
132132
with:
133133
path: ~/.m2/repository
134134
key: cache-local-maven-${{ github.sha }}

β€Ž.github/workflows/pre-release.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -280,7 +280,7 @@ jobs:
280280
-H "X-GitHub-Api-Version: 2022-11-28" \
281281
https://api.github.com/orgs/${{ github.repository_owner }}/packages/maven/org.grails.grails-web-mvc || true
282282
- name: "πŸ“₯ Checkout repository"
283-
uses: actions/checkout@v4
283+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
284284
- name: "πŸ›‘ Set Prevent Snapshot Publishing Flag"
285285
if: ${{ github.event.inputs.preventSnapshots }}
286286
run: |
@@ -298,12 +298,12 @@ jobs:
298298
echo "Publishing already disabled."
299299
fi
300300
- name: "β˜•οΈ Setup JDK"
301-
uses: actions/setup-java@v4
301+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
302302
with:
303303
distribution: 'liberica'
304304
java-version: '17'
305305
- name: "🐘 Setup Gradle"
306-
uses: gradle/actions/setup-gradle@v4
306+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
307307
with:
308308
develocity-access-key: ${{ secrets.DEVELOCITY_ACCESS_KEY }}
309309
- name: "βš™ Set version to ${{ github.event.inputs.targetVersion }}"

β€Ž.github/workflows/release-notes.yml

+1-1
Original file line numberDiff line numberDiff line change
@@ -19,6 +19,6 @@ jobs:
1919
runs-on: ubuntu-latest
2020
steps:
2121
- name: "πŸ“ Update Release Draft"
22-
uses: release-drafter/release-drafter@v6
22+
uses: release-drafter/release-drafter@3f0f87098bd6b5c5b9a36d49c41d998ea58f9348 # v6
2323
env:
2424
GITHUB_TOKEN: ${{ secrets.GH_TOKEN }}

β€Ž.github/workflows/release.yml

+6-6
Original file line numberDiff line numberDiff line change
@@ -273,7 +273,7 @@ jobs:
273273
-H "X-GitHub-Api-Version: 2022-11-28" \
274274
https://api.github.com/orgs/${{ github.repository_owner }}/packages/maven/org.grails.grails-web-mvc || true
275275
- name: "πŸ“₯ Checkout repository"
276-
uses: actions/checkout@v4
276+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
277277
- name: "⎌ Revert Prevent Snapshot Publishing Flag"
278278
run: |
279279
sed -i "s/^preventSnapshotPublish.*$/preventSnapshotPublish\=false/" gradle.properties
@@ -289,12 +289,12 @@ jobs:
289289
echo "Publishing already enabled."
290290
fi
291291
- name: "β˜•οΈ Setup JDK"
292-
uses: actions/setup-java@v4
292+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
293293
with:
294294
distribution: liberica
295295
java-version: 17
296296
- name: "🐘 Setup Gradle"
297-
uses: gradle/actions/setup-gradle@v4
297+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
298298
with:
299299
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
300300
- name: "πŸ“ Store the target branch"
@@ -360,17 +360,17 @@ jobs:
360360
contents: read # limit to read access
361361
steps:
362362
- name: "πŸ“₯ Checkout repository"
363-
uses: actions/checkout@v4
363+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
364364
with:
365365
token: ${{ secrets.GH_TOKEN }}
366366
ref: v${{ needs.publish.outputs.release_version }}
367367
- name: "β˜•οΈ Setup JDK"
368-
uses: actions/setup-java@v4
368+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
369369
with:
370370
distribution: liberica
371371
java-version: 17
372372
- name: "🐘 Setup Gradle"
373-
uses: gradle/actions/setup-gradle@v4
373+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
374374
with:
375375
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
376376
- name: "πŸšͺ Nexus Staging Close And Release"

β€Ž.github/workflows/retry-release.yml

+2-2
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@ jobs:
2020
GIT_USER_EMAIL: '[email protected]'
2121
steps:
2222
- name: "πŸ“₯ Checkout repository"
23-
uses: actions/checkout@v4
23+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
2424
with:
2525
ref: "v${{ github.event.inputs.release }}"
2626
token: ${{ secrets.GH_TOKEN }}
@@ -30,7 +30,7 @@ jobs:
3030
distribution: liberica
3131
java-version: 17
3232
- name: "🐘 Setup Gradle"
33-
uses: gradle/actions/setup-gradle@v4
33+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
3434
with:
3535
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
3636
- name: "πŸ“ Store the target branch"

β€Ž.github/workflows/sdkman.yml

+3-3
Original file line numberDiff line numberDiff line change
@@ -12,17 +12,17 @@ jobs:
1212
contents: read
1313
steps:
1414
- name: "πŸ“₯ Checkout repository"
15-
uses: actions/checkout@v4
15+
uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
1616
with:
1717
token: ${{ secrets.GH_TOKEN }}
1818
ref: v${{ github.event.inputs.version }}
1919
- name: "β˜•οΈ Setup JDK"
20-
uses: actions/setup-java@v4
20+
uses: actions/setup-java@7a6d8a8234af8eb26422e24e3006232cccaa061b # v4
2121
with:
2222
distribution: liberica
2323
java-version: 17
2424
- name: "🐘 Setup Gradle"
25-
uses: gradle/actions/setup-gradle@v4
25+
uses: gradle/actions/setup-gradle@0bdd871935719febd78681f197cd39af5b6e16a6 # v4
2626
with:
2727
develocity-access-key: ${{ secrets.GRADLE_ENTERPRISE_ACCESS_KEY }}
2828
- name: "πŸ† Grails SDK Minor Release"

0 commit comments

Comments
Β (0)