Merge branch 'master' into dependabot/github_actions/returntocorp/sem…

…grep-action-713efdd345f3035192eaa63f56867b88e63e4e5d
4k4xs4pH1r3 · Mar 4, 2024 · a174413 · a174413
2 parents 8bff728 + 068b263
commit a174413
Show file tree

Hide file tree

Showing 5 changed files with 6 additions and 6 deletions.
diff --git a/.github/workflows/fortify.yml b/.github/workflows/fortify.yml
@@ -91,7 +91,7 @@ jobs:
 
       # Once scan completes, pull SAST issues from Fortify on Demand and generate SARIF output.
       - name: Export results to GitHub-optimized SARIF
-        uses: fortify/gha-export-vulnerabilities@fcb374411cff9809028c911dabb8b57dbdae623b
+        uses: fortify/gha-export-vulnerabilities@d2838d7a21c0499504efe8f384573f51bea799e0
         with:
           fod_base_url: "https://ams.fortify.com/"
           fod_tenant: ${{ secrets.FOD_TENANT }}

diff --git a/.github/workflows/lintr.yml b/.github/workflows/lintr.yml
@@ -41,10 +41,10 @@ jobs:
         uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1
 
       - name: Setup R
-        uses: r-lib/actions/setup-r@8993367d264b4372cfccce1836290b7087db9c92
+        uses: r-lib/actions/setup-r@0ed4cdf40958ef43a6b33b9792e07ac76c3239e3
 
       - name: Setup lintr
-        uses: r-lib/actions/setup-r-dependencies@8993367d264b4372cfccce1836290b7087db9c92
+        uses: r-lib/actions/setup-r-dependencies@0ed4cdf40958ef43a6b33b9792e07ac76c3239e3
         with:
           extra-packages: lintr
 

diff --git a/.github/workflows/snyk-container.yml b/.github/workflows/snyk-container.yml
@@ -45,7 +45,7 @@ jobs:
       # Snyk can be used to break the build when it detects vulnerabilities.
       # In this case we want to upload the issues to GitHub Code Scanning
       continue-on-error: true
-      uses: snyk/actions/docker@14818c4695ecc4045f33c9cee9e795a788711ca4
+      uses: snyk/actions/docker@1d672a455ab3339ef0a0021e1ec809165ee12fad
       env:
         # In order to use the Snyk Action you will need to have a Snyk API token.
         # More details in https://github.com/snyk/actions#getting-your-snyk-token

diff --git a/.github/workflows/snyk-infrastructure.yml b/.github/workflows/snyk-infrastructure.yml
@@ -42,7 +42,7 @@ jobs:
         # Snyk can be used to break the build when it detects security issues.
         # In this case we want to upload the issues to GitHub Code Scanning
         continue-on-error: true
-        uses: snyk/actions/iac@14818c4695ecc4045f33c9cee9e795a788711ca4
+        uses: snyk/actions/iac@1d672a455ab3339ef0a0021e1ec809165ee12fad
         env:
           # In order to use the Snyk Action you will need to have a Snyk API token.
           # More details in https://github.com/snyk/actions#getting-your-snyk-token

diff --git a/.github/workflows/snyk-security.yml b/.github/workflows/snyk-security.yml
@@ -44,7 +44,7 @@ jobs:
       - name: Set up Snyk CLI to check for security issues
         # Snyk can be used to break the build when it detects security issues.
         # In this case we want to upload the SAST issues to GitHub Code Scanning
-        uses: snyk/actions/setup@806182742461562b67788a64410098c9d9b96adb
+        uses: snyk/actions/setup@1d672a455ab3339ef0a0021e1ec809165ee12fad
 
         # For Snyk Open Source you must first set up the development environment for your application's dependencies
         # For example for Node