From 8ae002514163ee46a358465d94459ba868b84a4c Mon Sep 17 00:00:00 2001
From: Jim <jlambert@hashicorp.com>
Date: Sat, 8 Feb 2025 16:42:02 -0500
Subject: [PATCH] chore: update deps and workflows

---
 .github/workflows/fuzz.yml |  6 +++---
 .github/workflows/go.yml   | 27 ++++++++++++++++++++++-----
 2 files changed, 25 insertions(+), 8 deletions(-)

diff --git a/.github/workflows/fuzz.yml b/.github/workflows/fuzz.yml
index aff2a6c..4e3cd4f 100644
--- a/.github/workflows/fuzz.yml
+++ b/.github/workflows/fuzz.yml
@@ -10,7 +10,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
         # commit hash == v1.2.0
-      - uses: jidicula/go-fuzz-action@4f24eed45b25214f31a9fe035ca68ea2c88c6a13 # TSCCR: no entry for action: "jidicula/go-fuzz-action"
+      - uses: jidicula/go-fuzz-action@56d77b1f65ed7791cd17d5ee899379da97625851 # TSCCR: no entry for action: "jidicula/go-fuzz-action"
         with:
           fuzz-time: 30s
           fuzz-regexp: Fuzz_lexerNextToken
@@ -19,7 +19,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
         # commit hash == v1.2.0
-      - uses: jidicula/go-fuzz-action@4f24eed45b25214f31a9fe035ca68ea2c88c6a13 # TSCCR: no entry for action: "jidicula/go-fuzz-action"
+      - uses: jidicula/go-fuzz-action@56d77b1f65ed7791cd17d5ee899379da97625851 # TSCCR: no entry for action: "jidicula/go-fuzz-action"
         with:
           fuzz-time: 30s
           fuzz-regexp: Fuzz_parserParse
@@ -28,7 +28,7 @@ jobs:
     runs-on: ubuntu-latest
     steps:
         # commit hash == v1.2.0
-      - uses: jidicula/go-fuzz-action@4f24eed45b25214f31a9fe035ca68ea2c88c6a13 # TSCCR: no entry for action: "jidicula/go-fuzz-action"
+      - uses: jidicula/go-fuzz-action@56d77b1f65ed7791cd17d5ee899379da97625851 # TSCCR: no entry for action: "jidicula/go-fuzz-action"
         with:
           fuzz-time: 30s
           fuzz-regexp: Fuzz_mqlParse
\ No newline at end of file
diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml
index 028e67b..d0bbabe 100644
--- a/.github/workflows/go.yml
+++ b/.github/workflows/go.yml
@@ -20,15 +20,15 @@ jobs:
 
     steps:
       - name: Set up Go 1.x
-        uses: actions/setup-go@93397bea11091df50f3d7e59dc26a7711a8bcfbe # v4.1.0
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
         with:
           go-version: ${{ matrix.go }}
 
       - name: Check out code into the Go module directory
-        uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: go mod package cache
-        uses: actions/cache@704facf57e6136b1bc63b828d79edcd491f0ee84 # v3.3.2
+        uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
         with:
           path: ~/go/pkg/mod
           key: ${{ runner.os }}-go-${{ matrix.go }}-${{ hashFiles('tests/go.mod') }}
@@ -45,6 +45,23 @@ jobs:
         run: |
           make coverage-diff
     
+  vulncheck:
+    name: Vulnerability Check
+    runs-on: ubuntu-latest
+    steps:
+      - name: Set up Go 1.x
+        uses: actions/setup-go@3041bf56c941b39c61721a86cd11f3bb1338122a # v5.2.0
+        with:
+          go-version: 1.22
+
+      - name: Check out code into the Go module directory
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+  
+      - name: go mod package cache
+        uses: actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
+        with:
+          path: ~/go/pkg/mod
+          key: ${{ runner.os }}-go-122-${{ hashFiles('tests/go.mod') }}
+
       - name: govulncheck 
-        uses: golang/govulncheck-action@7da72f730e37eeaad891fcff0a532d27ed737cd4 # v1
-  
\ No newline at end of file
+        uses: golang/govulncheck-action@7da72f730e37eeaad891fcff0a532d27ed737cd4 # v1
\ No newline at end of file