diff --git a/.github/workflows/dco-check.yml b/.github/workflows/dco-check.yml index 89a9dc1b..92857c26 100644 --- a/.github/workflows/dco-check.yml +++ b/.github/workflows/dco-check.yml @@ -12,7 +12,7 @@ jobs: group: databricks-protected-runner-group labels: linux-ubuntu-latest steps: - - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0 - name: Check for DCO sign-off diff --git a/.github/workflows/kernel-e2e.yml b/.github/workflows/kernel-e2e.yml index 63255bc2..455b1b38 100644 --- a/.github/workflows/kernel-e2e.yml +++ b/.github/workflows/kernel-e2e.yml @@ -143,7 +143,7 @@ jobs: core.setOutput('head_sha', context.payload.merge_group.head_sha); - name: Check out repo at head SHA - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ steps.refs.outputs.head_sha }} fetch-depth: 0 @@ -203,7 +203,7 @@ jobs: E2E_TABLE_SUFFIX: ${{ github.sha }} steps: - name: Check out driver - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: ref: ${{ needs.detect-changes.outputs.head_sha }} @@ -232,7 +232,7 @@ jobs: repositories: databricks-sql-kernel - name: Check out kernel at pinned SHA - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: repository: databricks/databricks-sql-kernel ref: ${{ steps.kernel-rev.outputs.rev }} diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index f8948e34..48a5d6f1 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -23,7 +23,7 @@ jobs: group: databricks-protected-runner-group labels: linux-ubuntu-latest steps: - - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Pin lockfileVersion to 2 # See CONTRIBUTING.md "Dependency Pins". Modern npm writes v3 # by default; catching drift here prevents silent format upgrades @@ -77,7 +77,7 @@ jobs: - uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4 with: node-version: ${{ matrix.node-version }} - - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - uses: ./.github/actions/setup-jfrog - name: Cache node modules uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 @@ -134,7 +134,7 @@ jobs: NYC_REPORT_DIR: coverage_e2e_node${{ matrix.node-version }} steps: - - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4 with: node-version: ${{ matrix.node-version }} @@ -169,7 +169,7 @@ jobs: cache-name: cache-node-modules steps: - - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + - uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: Cache node modules uses: actions/cache@0057852bfaa89a56745cba8c7296529d2fc39830 # v4 with: diff --git a/.github/workflows/trigger-integration-tests.yml b/.github/workflows/trigger-integration-tests.yml index 21289d0f..16fd1631 100644 --- a/.github/workflows/trigger-integration-tests.yml +++ b/.github/workflows/trigger-integration-tests.yml @@ -220,7 +220,7 @@ jobs: checks: write steps: - name: Checkout code - uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 with: fetch-depth: 0