chore: [StepSecurity] Apply security best practices (#1054)

Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>

Author: stepsecurity-app[bot]

.github/workflows/zxc-compile-code.yaml

@@ -163,7 +163,7 @@ jobs:
       # May be removed once the artifacts are publicly accessible.
       - name: Authenticate to Google Cloud
         id: google-auth
-        uses: google-github-actions/auth@71f986410dfbc7added4569d411d040a91dc6935 # v2.1.8
+        uses: step-security/google-github-auth@40f6deebd366f16c782d7a0ad0844e3b96a032a6 # v2.1.10
         if: ${{ inputs.enable-unit-tests && !cancelled() && !failure() }}
         with:
           token_format: 'access_token'