diff --git a/.github/workflows/codacy-analysis.yml b/.github/workflows/codacy-analysis.yml index 1da162d..ac3ac69 100644 --- a/.github/workflows/codacy-analysis.yml +++ b/.github/workflows/codacy-analysis.yml @@ -29,7 +29,7 @@ jobs: steps: # Checkout the repository to the GitHub Actions runner - name: Checkout code - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4 # Execute Codacy Analysis CLI and generate a SARIF output with the security issues identified during the analysis - name: Run Codacy Analysis CLI diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9c32604..eb4aae8 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -38,7 +38,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4 # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL diff --git a/.github/workflows/rebase.yml b/.github/workflows/rebase.yml index 9d5e25b..854909b 100644 --- a/.github/workflows/rebase.yml +++ b/.github/workflows/rebase.yml @@ -8,7 +8,7 @@ jobs: if: github.event.issue.pull_request != '' && contains(github.event.comment.body, '/rebase') runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4 with: token: ${{ secrets.PAT_TOKEN }} fetch-depth: 0 # otherwise, you will failed to push refs to dest repo diff --git a/.github/workflows/sync-release-version.yml b/.github/workflows/sync-release-version.yml index bc04a20..77dd56e 100644 --- a/.github/workflows/sync-release-version.yml +++ b/.github/workflows/sync-release-version.yml @@ -8,7 +8,7 @@ jobs: update-version: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4 with: fetch-depth: 0 - name: Run release-tagger diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index e89783a..fc3d65b 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -19,22 +19,22 @@ jobs: name: Test coverage-badge-go steps: - name: Checkout - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4 with: fetch-depth: 0 persist-credentials: false # otherwise, the token used is the GITHUB_TOKEN, instead of your personal access token. - - name: golangci-lint - uses: reviewdog/action-golangci-lint@v2 - with: - workdir: test - go_version: "1.14.4" - - name: Setup go uses: actions/setup-go@v5 with: go-version-file: 'test/go.mod' - cache: false + cache-dependency-path: "**/*.sum" + + - name: golangci-lint + uses: reviewdog/action-golangci-lint@v2 + with: + workdir: test + go_version_file: "test/go.mod" - name: Run Test run: diff --git a/.github/workflows/update-readme.yml b/.github/workflows/update-readme.yml index 794e9b0..2b66833 100644 --- a/.github/workflows/update-readme.yml +++ b/.github/workflows/update-readme.yml @@ -9,7 +9,7 @@ jobs: sync-assets: runs-on: ubuntu-latest steps: - - uses: actions/checkout@0ad4b8fadaa221de15dcec353f45205ec38ea70b # v4 + - uses: actions/checkout@44c2b7a8a4ea60a981eaca3cf939b5f4305c123b # v4 with: fetch-depth: 0 diff --git a/test/go.mod b/test/go.mod index 309f548..ed1f1e7 100644 --- a/test/go.mod +++ b/test/go.mod @@ -1,3 +1,3 @@ module github.com/tj-actions/coverage-badge-go/test -go 1.14 +go 1.15