7676 - 5432:5432
7777 steps :
7878 - name : Checkout ${{ inputs.branch }}
79- uses : actions/checkout@v2
79+ uses : actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
8080 with :
8181 ref : ${{ inputs.branch }}
8282 - name : Get year/month for cache key
8585 echo "::set-output name=yearmonth::$(/bin/date -u "+%Y-%m")"
8686shell : bash
8787 - name : Cache Gradle downloads
88- uses : actions/cache@v4
88+ uses : actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
8989 id : cache-gradle
9090 with :
9191 path : |
9595# refresh cache every month to avoid unlimited growth
9696 key : gradle-examples-${{ matrix.db }}-${{ steps.get-date.outputs.yearmonth }}
9797 - name : Set up JDK 11
98- uses : actions/setup-java@v2.2 .0
98+ uses : actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7 .0
9999 with :
100100 distribution : ' temurin'
101101 java-version : 11
@@ -104,7 +104,7 @@ jobs:
104104 - name : Run examples in '${{ matrix.example }}' on ${{ matrix.db }}
105105 run : ./gradlew :${{ matrix.example }}:runAllExamplesOn${{ matrix.db }}
106106 - name : Upload reports (if build failed)
107- uses : actions/upload-artifact@v4
107+ uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
108108 if : failure()
109109 with :
110110 name : reports-examples-${{ matrix.db }}
@@ -118,7 +118,7 @@ jobs:
118118 db : [ 'MariaDB', 'MySQL', 'PostgreSQL', 'MSSQLServer', 'CockroachDB', 'Db2', 'Oracle' ]
119119 steps :
120120 - name : Checkout ${{ inputs.branch }}
121- uses : actions/checkout@v2
121+ uses : actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
122122 with :
123123 ref : ${{ inputs.branch }}
124124 - name : Get year/month for cache key
@@ -127,7 +127,7 @@ jobs:
127127 echo "::set-output name=yearmonth::$(/bin/date -u "+%Y-%m")"
128128shell : bash
129129 - name : Cache Gradle downloads
130- uses : actions/cache@v4
130+ uses : actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
131131 id : cache-gradle
132132 with :
133133 path : |
@@ -137,7 +137,7 @@ jobs:
137137# refresh cache every month to avoid unlimited growth
138138 key : gradle-db-${{ matrix.db }}-${{ steps.get-date.outputs.yearmonth }}
139139 - name : Set up JDK 11
140- uses : actions/setup-java@v2.2 .0
140+ uses : actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7 .0
141141 with :
142142 distribution : ' temurin'
143143 java-version : 11
@@ -146,7 +146,7 @@ jobs:
146146 - name : Build and Test with ${{ matrix.db }}
147147 run : ./gradlew build -PshowStandardOutput -Pdocker -Pdb=${{ matrix.db }}
148148 - name : Upload reports (if build failed)
149- uses : actions/upload-artifact@v4
149+ uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
150150 if : failure()
151151 with :
152152 name : reports-db-${{ matrix.db }}
@@ -176,7 +176,7 @@ jobs:
176176 - { name: "24-ea", java_version_numeric: 24, from: 'jdk.java.net', jvm_args: '--enable-preview' }
177177 steps :
178178 - name : Checkout ${{ inputs.branch }}
179- uses : actions/checkout@v2
179+ uses : actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
180180 with :
181181 ref : ${{ inputs.branch }}
182182 - name : Get year/month for cache key
@@ -197,7 +197,7 @@ jobs:
197197 echo "buildtool-cache-key=${ROOT_CACHE_KEY}-${CURRENT_MONTH}-${CURRENT_BRANCH}-${CURRENT_DAY}" >> $GITHUB_OUTPUT
198198name : Cache Maven/Gradle Dependency/Dist Caches
199199 id : cache-maven
200- uses : actions/cache@v4
200+ uses : actions/cache@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
201201 # if it's not a pull request, we restore and save the cache
202202 if : github.event_name != 'pull_request'
203203 with :
@@ -214,7 +214,7 @@ jobs:
214214 ${{ steps.cache-key.outputs.buildtool-monthly-branch-cache-key }}-
215215 ${{ steps.cache-key.outputs.buildtool-monthly-cache-key }}-
216216name : Restore Maven/Gradle Dependency/Dist Caches
217- uses : actions/cache/restore@v4
217+ uses : actions/cache/restore@1bd1e32a3bdc45362d1e726936510720a7c30a57 # v4.2.0
218218 # if it's a pull request, we restore the cache, but we don't save it
219219 if : github.event_name == 'pull_request'
220220 with :
@@ -230,13 +230,13 @@ jobs:
230230
231231name : Set up latest JDK ${{ matrix.java.name }} from jdk.java.net
232232 if : matrix.java.from == 'jdk.java.net'
233- uses : oracle-actions/setup-java@v1
233+ uses : oracle-actions/setup-java@2e744f723b003fdd759727d0ff654c8717024845 # v1.4.0
234234 with :
235235 website : jdk.java.net
236236 release : ${{ matrix.java.java_version_numeric }}
237237 - name : Set up latest JDK ${{ matrix.java.name }} from Adoptium
238238 if : matrix.java.from == '' || matrix.java.from == 'adoptium.net'
239- uses : actions/setup-java@v2.2 .0
239+ uses : actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7 .0
240240 with :
241241 distribution : ' temurin'
242242 java-version : ${{ matrix.java.java_version_numeric }}
@@ -246,7 +246,7 @@ jobs:
246246 run : echo "::set-output name=path::${JAVA_HOME}"
247247 # Always use JDK 11 to build the main code: that's what we use for releases.
248248 - name : Set up JDK 11
249- uses : actions/setup-java@v2.2 .0
249+ uses : actions/setup-java@3a4f6e1af504cf6a31855fa899c6aa5355ba6c12 # v4.7 .0
250250 with :
251251 distribution : ' temurin'
252252 java-version : 11
@@ -265,7 +265,7 @@ jobs:
265265 -Porg.gradle.java.installations.paths=${{ steps.mainjdk-exportpath.outputs.path }},${{ steps.testjdk-exportpath.outputs.path }} \
266266 ${{ matrix.java.jvm_args && '-Ptest.jdk.launcher.args=' }}${{ matrix.java.jvm_args }}
267267name : Upload reports (if build failed)
268- uses : actions/upload-artifact@v4
268+ uses : actions/upload-artifact@65c4c4a1ddee5b72f698fdd19549f0f0fb45cf08 # v4.6.0
269269 if : failure()
270270 with :
271271 name : reports-java${{ matrix.java.name }}
0 commit comments