diff --git a/.github/workflows/code-quality-js.yml b/.github/workflows/code-quality-js.yml index e45a38a..c3b2ccb 100644 --- a/.github/workflows/code-quality-js.yml +++ b/.github/workflows/code-quality-js.yml @@ -21,7 +21,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false diff --git a/.github/workflows/code-quality-php.yml b/.github/workflows/code-quality-php.yml index 544f6e3..572c955 100644 --- a/.github/workflows/code-quality-php.yml +++ b/.github/workflows/code-quality-php.yml @@ -25,7 +25,7 @@ jobs: steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false diff --git a/.github/workflows/composer-diff.yml b/.github/workflows/composer-diff.yml index 84d5574..435c55f 100644 --- a/.github/workflows/composer-diff.yml +++ b/.github/workflows/composer-diff.yml @@ -22,7 +22,7 @@ jobs: pull-requests: write # Required to post the diff as a sticky comment steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: fetch-depth: 0 # Required for IonBazan/composer-diff-action # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. diff --git a/.github/workflows/example-plugin.yml b/.github/workflows/example-plugin.yml index 184f099..f7c0022 100644 --- a/.github/workflows/example-plugin.yml +++ b/.github/workflows/example-plugin.yml @@ -18,7 +18,7 @@ jobs: contents: write # Required to upload assets to the GitHub release steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false diff --git a/.github/workflows/npm-package.yml b/.github/workflows/npm-package.yml index 02f7951..a1c0978 100644 --- a/.github/workflows/npm-package.yml +++ b/.github/workflows/npm-package.yml @@ -15,7 +15,7 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false diff --git a/.github/workflows/php-package.yml b/.github/workflows/php-package.yml index f3c0818..bf90267 100644 --- a/.github/workflows/php-package.yml +++ b/.github/workflows/php-package.yml @@ -17,7 +17,7 @@ jobs: contents: write # Required to upload assets to the GitHub release steps: - name: Checkout repository - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 + uses: actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6.0.3 with: # Do not store git credentials in .git -> could be leaked/exposed by infected/malicious action. persist-credentials: false