Merge pull request #237 from fish-shop/dependabot/github_actions/version-updates-6b3fed487b

marcransome · web-flow · commit 644ad914ee29 · 2026-02-09T20:24:01.000Z
Bump the version-updates group with 8 updates
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -17,4 +17,4 @@ jobs:
     name: CodeQL Analysis
     permissions:
       security-events: write
-    uses: fish-shop/workflows/.github/workflows/codeql-analysis.yml@1684123c55a348a8c85e465fcdb3d817875dddae # v1.13.41
+    uses: fish-shop/workflows/.github/workflows/codeql-analysis.yml@3b0a9836640281aa743cb1379c76c0130f35dfa4 # v1.13.42
diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml
@@ -11,4 +11,4 @@ jobs:
     name: Dependency Review
     permissions:
       pull-requests: write
-    uses: fish-shop/workflows/.github/workflows/dependency-review.yml@1684123c55a348a8c85e465fcdb3d817875dddae # v1.13.41
+    uses: fish-shop/workflows/.github/workflows/dependency-review.yml@3b0a9836640281aa743cb1379c76c0130f35dfa4 # v1.13.42
diff --git a/.github/workflows/gitleaks.yml b/.github/workflows/gitleaks.yml
@@ -14,6 +14,6 @@ jobs:
     name: Gitleaks SAST scan
     permissions:
       pull-requests: write
-    uses: fish-shop/workflows/.github/workflows/gitleaks.yml@1684123c55a348a8c85e465fcdb3d817875dddae # v1.13.41
+    uses: fish-shop/workflows/.github/workflows/gitleaks.yml@3b0a9836640281aa743cb1379c76c0130f35dfa4 # v1.13.42
     secrets:
       gitleaks_license: ${secrets.GITLEAKS_LICENSE}
diff --git a/.github/workflows/markdown-links.yml b/.github/workflows/markdown-links.yml
@@ -11,4 +11,4 @@ jobs:
     name: Markdown Links Check
     permissions:
       pull-requests: write
-    uses: fish-shop/workflows/.github/workflows/markdown-links.yml@1684123c55a348a8c85e465fcdb3d817875dddae # v1.13.41
+    uses: fish-shop/workflows/.github/workflows/markdown-links.yml@3b0a9836640281aa743cb1379c76c0130f35dfa4 # v1.13.42
diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml
@@ -14,4 +14,4 @@ jobs:
     permissions:
       security-events: write # Needed to upload the results to code scanning dashboard
       id-token: write # Needed to publish results to OpenSSF API and get a badge
-    uses: fish-shop/workflows/.github/workflows/openssf-scorecard.yml@1684123c55a348a8c85e465fcdb3d817875dddae # v1.13.41
+    uses: fish-shop/workflows/.github/workflows/openssf-scorecard.yml@3b0a9836640281aa743cb1379c76c0130f35dfa4 # v1.13.42
diff --git a/.github/workflows/release-tags.yml b/.github/workflows/release-tags.yml
@@ -11,4 +11,4 @@ jobs:
     name: Release Tags
     permissions:
       contents: write
-    uses: fish-shop/workflows/.github/workflows/release-tags.yml@1684123c55a348a8c85e465fcdb3d817875dddae # v1.13.41
+    uses: fish-shop/workflows/.github/workflows/release-tags.yml@3b0a9836640281aa743cb1379c76c0130f35dfa4 # v1.13.42
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -30,13 +30,13 @@ jobs:
     runs-on: ${{ matrix.os }}
     steps:
       - name: Harden runner
-        uses: step-security/harden-runner@e3f713f2d8f53843e71c69a996d56f51aa9adfb9 # v2.14.1
+        uses: step-security/harden-runner@5ef0c079ce82195b2a36a210272d6b661572d83e # v2.14.2
         with:
           egress-policy: audit
       - name: Checkout repository
         uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
       - name: Install fish shell
-        uses: fish-shop/install-fish-shell@ebe27c2d2cfa799bbb8453344618ea6701df83cc # v2.0.42
+        uses: fish-shop/install-fish-shell@ba5496f16bb97a40f3f10bcf50597feff16d5be6 # v2.0.43
       - name: Create fish shell file with valid indentation
         run: |
           echo "\
