Add ghasum, update dirty-waters action

LogFlames · LogFlames · commit 9fb1e16c60ae · 2025-07-29T18:51:54.000+02:00
diff --git a/.github/workflows/code-qualitiy.yml b/.github/workflows/code-qualitiy.yml
@@ -106,20 +106,25 @@ jobs:
       pull-requests: write # To comment on a Pull Request
     steps:
       - name: Harden Runner
-        uses: step-security/harden-runner@c6295a65d1254861815972266d5933fd6e532bdf # v2.11.1
+        uses: step-security/harden-runner@0634a2670c59f64b4a01f0f96f84700a4088b9f0 # v2.12.0
         with:
           egress-policy: audit
 
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           submodules: true
+
+      - name: Verify action checksums
+        uses: ./.github/actions/ghasum
+
       - name: Setup JDK17
-        uses: actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7.0
+        uses: actions/setup-java@v4.7.1
         with:
           java-version: '17'
           distribution: 'temurin'
+
       - name: Dirty Waters Analysis
-        uses: chains-project/dirty-waters-action@57e2b7be964e687bdab629460efb274053fe3b28 # v1.11.45
+        uses: chains-project/dirty-waters-action@v1.11.48
         with:
           github_token: ${{ secrets.GITHUB_TOKEN }}
           package_manager: maven
diff --git a/.github/workflows/gha.sum b/.github/workflows/gha.sum
@@ -6,10 +6,12 @@ actions/dependency-review-action@v4.7.1 hJDiqW4455iVs8gVcWjiEbjhuvh0oXQKy9fN/BGF
 actions/setup-go@v5.5.0 vSiNC7HetrtPF3QhZDzPHWyJ1e8pFltzruLjcw65Sok=
 actions/setup-java@387ac29b308b003ca37ba93a6cab5eb57c8f5f93 XE1eqHfEOlHsHx+3cUQA1OGC3jxGBnmx7eTIdEzwSoI=
 actions/setup-java@v4.7.1 cKZQn6p38RgADB4MCMpbFp94sScgm/u3B7rEDB9QS5I=
+actions/setup-python@v5.6.0 MTHBGEHwb+MeIw3xRLiVuM/uyRfuK8hlVXL+Z/yEA8c=
 actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 kZHHfo2NsxevBRTKrZnUpDu0Cxgtj5Vooe4x4rylvg8=
 actions/upload-artifact@v4.6.2 kZHHfo2NsxevBRTKrZnUpDu0Cxgtj5Vooe4x4rylvg8=
 github/codeql-action@d6bbdef45e766d081b84a2def353b0055f728d3e a64qKQusITtfuxl3BMjHFBq/jN7uTJqDLVTWW80ij+s=
 github/codeql-action@v3.29.3 a64qKQusITtfuxl3BMjHFBq/jN7uTJqDLVTWW80ij+s=
+chains-project/dirty-waters-action@v1.11.48 BlbW87cG7BWyVwIVCVZ404lqjY7rTn4kW8qvMsJMUTw=
 jreleaser/release-action@2.4.2 Ixc/05XDYYHGUvtC6Jt9gB/mpHPIwBX7PR8At1yEWSs=
 ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde NlVzVIaycy3fhYp7tgiwvpWvzSsPa48uTVejF6tHEog=
 stefanzweifel/git-auto-commit-action@v6.0.1 5+Y5J+dG+VvtR13IIYuBHcAdJAcnDBQU/U0sRO3YZZw=

-Original file line number
+Diff line change
 actions/[email protected] vSiNC7HetrtPF3QhZDzPHWyJ1e8pFltzruLjcw65Sok=
 actions/setup-java@387ac29b308b003ca37ba93a6cab5eb57c8f5f93 XE1eqHfEOlHsHx+3cUQA1OGC3jxGBnmx7eTIdEzwSoI=
 actions/[email protected] cKZQn6p38RgADB4MCMpbFp94sScgm/u3B7rEDB9QS5I=
 +actions/[email protected] MTHBGEHwb+MeIw3xRLiVuM/uyRfuK8hlVXL+Z/yEA8c=
 actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 kZHHfo2NsxevBRTKrZnUpDu0Cxgtj5Vooe4x4rylvg8=
 actions/[email protected] kZHHfo2NsxevBRTKrZnUpDu0Cxgtj5Vooe4x4rylvg8=
 github/codeql-action@d6bbdef45e766d081b84a2def353b0055f728d3e a64qKQusITtfuxl3BMjHFBq/jN7uTJqDLVTWW80ij+s=
 github/[email protected] a64qKQusITtfuxl3BMjHFBq/jN7uTJqDLVTWW80ij+s=
 +chains-project/[email protected] BlbW87cG7BWyVwIVCVZ404lqjY7rTn4kW8qvMsJMUTw=
 jreleaser/[email protected] Ixc/05XDYYHGUvtC6Jt9gB/mpHPIwBX7PR8At1yEWSs=
 ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde NlVzVIaycy3fhYp7tgiwvpWvzSsPa48uTVejF6tHEog=
 stefanzweifel/[email protected] 5+Y5J+dG+VvtR13IIYuBHcAdJAcnDBQU/U0sRO3YZZw=