ci: fix version of peter-evans/repository-dispatch and trivy actions

2025-12-19 18:05:41 -05:00 · 2025-10-16 10:26:43 +02:00
parent 4909af97fb
commit d15ffd6c52
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/main-build.yml
+++ b/.github/workflows/main-build.yml
@@ -72,7 +72,7 @@ jobs:
    steps:
      - run: echo "debug repo ${{github.repository}} ref ${{github.ref}} res ${{needs.publish-develop-maven.result}} jobStatus ${{job.status}} isNotFork ${{github.repository == 'kestra-io/kestra'}} isDevelop ${{github.ref == 'refs/heads/develop'}}"
      - name: Trigger EE Workflow
-        uses: peter-evans/repository-dispatch@v4
+        uses: peter-evans/repository-dispatch@5fc4efd1a4797ddb68ffd0714a238564e4cc0e6f # v4
        if: github.ref == 'refs/heads/develop' && needs.publish-develop-maven == 'success'
        with:
          token: ${{ secrets.GH_PERSONAL_TOKEN }}
--- a/.github/workflows/vulnerabilities-check.yml
+++ b/.github/workflows/vulnerabilities-check.yml
@@ -71,7 +71,7 @@ jobs:

      # Run Trivy image scan for Docker vulnerabilities, see https://github.com/aquasecurity/trivy-action
      - name: Docker Vulnerabilities Check
-        uses: aquasecurity/trivy-action@0.33.1
+        uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
        with:
          image-ref: kestra/kestra:develop
          format: 'template'
@@ -108,7 +108,7 @@ jobs:

      # Run Trivy image scan for Docker vulnerabilities, see https://github.com/aquasecurity/trivy-action
      - name: Docker Vulnerabilities Check
-        uses: aquasecurity/trivy-action@0.33.1
+        uses: aquasecurity/trivy-action@b6643a29fecd7f34b3597bc6acb0a98b03d33ff8 # 0.33.1
        with:
          image-ref: kestra/kestra:latest
          format: table