fix: security vulnarabilities

MathiasVDA · MathiasVDA · commit a38a02ddd2c8 · 2025-02-10T22:35:35.000+01:00
diff --git a/.github/workflows/build-and-push.yml b/.github/workflows/build-and-push.yml
@@ -16,10 +16,10 @@ jobs:
         uses: actions/checkout@v2
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v2
+        uses: docker/setup-buildx-action@885d1462b80bc1c1c7f0b00334ad271f09369c55
 
       - name: Login to DockerHub
-        uses: docker/login-action@v2
+        uses: docker/login-action@465a07811f14bebb1938fbed4728c6a1ff8901fc
         with:
           username: ${{ secrets.DOCKERHUB_USERNAME }}
           password: ${{ secrets.DOCKERHUB_TOKEN }}
@@ -41,7 +41,7 @@ jobs:
           labels: ${{ steps.meta.outputs.labels }}
           platforms: linux/amd64,linux/arm64
 
-      - uses: shrink/actions-docker-extract@v3
+      - uses: shrink/actions-docker-extract@f97780187d59e88f06a98b166a7e700c0f400314
         id: extract
         with:
           image: ${{ vars.DOCKERHUB_REPO }}
