From a1e5566ca92afcb21238945272bfcfe731fb144a Mon Sep 17 00:00:00 2001 From: slawomirbabicz <111378977+slawomirbabicz@users.noreply.github.com> Date: Thu, 9 Apr 2026 14:49:34 +0200 Subject: [PATCH 1/2] chore: pin actions to SHA in .github/workflows/build-and-test.yml --- .github/workflows/build-and-test.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/build-and-test.yml b/.github/workflows/build-and-test.yml index 3f5a424..122ad75 100644 --- a/.github/workflows/build-and-test.yml +++ b/.github/workflows/build-and-test.yml @@ -12,15 +12,15 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v3 + uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3.6.0 - name: Setup DFX - uses: dfinity/setup-dfx@main + uses: dfinity/setup-dfx@e50c04f104ee4285ec010f10609483cf41e4d365 # main with: dfx-version: 'auto' - name: Install PocketIC server - uses: dfinity/pocketic@main + uses: dfinity/pocketic@20c33db1aa87cc6ece50857ac632c37acf5e0322 # main with: pocket-ic-server-version: '12.0.0' From 465755dcc1d707e4aaa78ac5ef37ba5d30742d2f Mon Sep 17 00:00:00 2001 From: slawomirbabicz <111378977+slawomirbabicz@users.noreply.github.com> Date: Thu, 9 Apr 2026 14:49:36 +0200 Subject: [PATCH 2/2] chore: pin actions to SHA in .github/workflows/publish.yml --- .github/workflows/publish.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml index 05baa1f..8c0c05d 100644 --- a/.github/workflows/publish.yml +++ b/.github/workflows/publish.yml @@ -13,9 +13,9 @@ jobs: id-token: write # Required for OIDC token exchange steps: - - uses: actions/checkout@v5 + - uses: actions/checkout@93cb6efe18208431cddfb8368fd83d5badbf9bfd # v5.0.1 - - uses: rust-lang/crates-io-auth-action@v1 + - uses: rust-lang/crates-io-auth-action@b7e9a28eded4986ec6b1fa40eeee8f8f165559ec # v1 id: auth - name: Set Cargo.toml version