diff options
| -rw-r--r-- | .github/workflows/auto-approve-run.yml | 2 | ||||
| -rw-r--r-- | .github/workflows/create-prerelease-on-tag.yml | 2 | ||||
| -rw-r--r-- | .github/workflows/playwright.yml | 4 | ||||
| -rw-r--r-- | .github/workflows/playwright_comment.yml | 4 | ||||
| -rw-r--r-- | .github/workflows/publish-chrome-development.yml | 2 | ||||
| -rw-r--r-- | .github/workflows/publish-chrome.yml | 2 | ||||
| -rw-r--r-- | .github/workflows/publish-firefox-development.yml | 4 | ||||
| -rw-r--r-- | .github/workflows/publish-firefox.yml | 2 |
8 files changed, 11 insertions, 11 deletions
diff --git a/.github/workflows/auto-approve-run.yml b/.github/workflows/auto-approve-run.yml index 1eecfb88..bc9b1742 100644 --- a/.github/workflows/auto-approve-run.yml +++ b/.github/workflows/auto-approve-run.yml @@ -14,7 +14,7 @@ jobs: if: github.actor == 'djahandarie' steps: - name: Download workflow artifact - uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # v3.1.2 + uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # v3.1.4 with: github_token: ${{ secrets.GITHUB_TOKEN }} workflow: auto-approve.yml diff --git a/.github/workflows/create-prerelease-on-tag.yml b/.github/workflows/create-prerelease-on-tag.yml index 884d7902..c33eba29 100644 --- a/.github/workflows/create-prerelease-on-tag.yml +++ b/.github/workflows/create-prerelease-on-tag.yml @@ -67,7 +67,7 @@ jobs: actions: read # To read the workflow path. id-token: write # To sign the provenance. contents: write # To add assets to a release. - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.9.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0 with: base64-subjects: "${{ needs.build.outputs.hashes }}" upload-assets: true diff --git a/.github/workflows/playwright.yml b/.github/workflows/playwright.yml index fa0ec62a..b5c56626 100644 --- a/.github/workflows/playwright.yml +++ b/.github/workflows/playwright.yml @@ -16,7 +16,7 @@ jobs: - uses: actions/checkout@v4 - name: Install CJK fonts - uses: awalsh128/cache-apt-pkgs-action@2555a377dfb0ca4763693499998da808e8d5afa0 # v1.4.1 + uses: awalsh128/cache-apt-pkgs-action@a6c3917cc929dd0345bfb2d3feaf9101823370ad # v1.4.2 with: packages: fonts-ipafont-mincho execute_install_scripts: true @@ -52,7 +52,7 @@ jobs: path: dictionaries - name: Grab latest screenshots from master branch - uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # pin@v2 + uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # pin@v2 continue-on-error: true id: master-screenshots with: diff --git a/.github/workflows/playwright_comment.yml b/.github/workflows/playwright_comment.yml index a2354d98..b519b1a1 100644 --- a/.github/workflows/playwright_comment.yml +++ b/.github/workflows/playwright_comment.yml @@ -16,7 +16,7 @@ jobs: github.event.workflow_run.conclusion == 'success' steps: - name: Grab playwright-output from PR run - uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # pin@v2 + uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # pin@v2 continue-on-error: true with: github_token: ${{ secrets.GITHUB_TOKEN }} @@ -24,7 +24,7 @@ jobs: name: playwright-output - name: Grab master-screenshots-outcome from PR run - uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 # pin@v2 + uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe # pin@v2 continue-on-error: true with: github_token: ${{ secrets.GITHUB_TOKEN }} diff --git a/.github/workflows/publish-chrome-development.yml b/.github/workflows/publish-chrome-development.yml index 84c71ec6..e47df1cb 100644 --- a/.github/workflows/publish-chrome-development.yml +++ b/.github/workflows/publish-chrome-development.yml @@ -24,7 +24,7 @@ jobs: steps: - name: Get the next attempt number id: getNextAttemptNumber - uses: cardinalby/js-eval-action@b34865f1d9cfdf35356013627474857cfe0d5091 # pin@v1.0.7 + uses: cardinalby/js-eval-action@e905fd3681d757e992c976f61c2784dcb4060e13 # pin@v1.0.9 env: attemptNumber: ${{ github.event.inputs.attemptNumber }} maxAttempts: ${{ github.event.inputs.maxAttempts }} diff --git a/.github/workflows/publish-chrome.yml b/.github/workflows/publish-chrome.yml index cf4627b7..51732a51 100644 --- a/.github/workflows/publish-chrome.yml +++ b/.github/workflows/publish-chrome.yml @@ -24,7 +24,7 @@ jobs: steps: - name: Get the next attempt number id: getNextAttemptNumber - uses: cardinalby/js-eval-action@b34865f1d9cfdf35356013627474857cfe0d5091 # pin@v1.0.7 + uses: cardinalby/js-eval-action@e905fd3681d757e992c976f61c2784dcb4060e13 # pin@v1.0.9 env: attemptNumber: ${{ github.event.inputs.attemptNumber }} maxAttempts: ${{ github.event.inputs.maxAttempts }} diff --git a/.github/workflows/publish-firefox-development.yml b/.github/workflows/publish-firefox-development.yml index c92b9d24..ad62d747 100644 --- a/.github/workflows/publish-firefox-development.yml +++ b/.github/workflows/publish-firefox-development.yml @@ -28,7 +28,7 @@ jobs: - name: Sign Firefox xpi for offline distribution id: ffSignXpi continue-on-error: true - uses: cardinalby/webext-buildtools-firefox-sign-xpi-action@94a2e58141e33c4306a72a93f191e8540189df92 # pin@v1.0.6 + uses: cardinalby/webext-buildtools-firefox-sign-xpi-action@ed44ff06ca9eae47ac45dd34b12833379b683c78 # pin@v1.0.7 with: timeoutMs: 1200000 extensionId: ${{ secrets.FF_OFFLINE_EXT_ID }} @@ -101,7 +101,7 @@ jobs: actions: read # To read the workflow path. id-token: write # To sign the provenance. contents: write # To add assets to a release. - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.9.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_generic_slsa3.yml@v1.10.0 with: base64-subjects: "${{ needs.build.outputs.hashes }}" upload-assets: true diff --git a/.github/workflows/publish-firefox.yml b/.github/workflows/publish-firefox.yml index f6499d01..a86301f0 100644 --- a/.github/workflows/publish-firefox.yml +++ b/.github/workflows/publish-firefox.yml @@ -15,7 +15,7 @@ jobs: - name: Deploy to Firefox Addons id: addonsDeploy - uses: cardinalby/webext-buildtools-firefox-addons-action@924ad87df7e4af50a654c164ad9e498dce260ffa # pin@v1.0.9 + uses: cardinalby/webext-buildtools-firefox-addons-action@987e338100095280ec8daf942e5640aeb55d3647 # pin@v1.0.10 continue-on-error: true with: zipFilePath: yomitan-firefox.zip |