From 1188df0bcc6b1544983c8cd152e76964c56c11a1 Mon Sep 17 00:00:00 2001 From: Zon Date: Fri, 27 Mar 2026 10:38:40 +0100 Subject: [PATCH] chore(OP-2780): pin GitHub Actions to commit SHA --- .github/workflows/_claude-code.yml | 4 ++-- .github/workflows/_codeql.yml | 6 +++--- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/_claude-code.yml b/.github/workflows/_claude-code.yml index 3c05c3848..2b194942a 100644 --- a/.github/workflows/_claude-code.yml +++ b/.github/workflows/_claude-code.yml @@ -77,7 +77,7 @@ jobs: - name: Run Claude Code (Interactive Mode) if: inputs.mode == 'interactive' - uses: anthropics/claude-code-action@v1 + uses: anthropics/claude-code-action@094bd24d575e7b30ac1576024817bf1a97c81262 # v1.0.80 with: anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }} track_progress: ${{ inputs.track_progress }} @@ -92,7 +92,7 @@ jobs: - name: Run Claude Code (Automation Mode) if: inputs.mode == 'automation' - uses: anthropics/claude-code-action@v1.0.77 + uses: anthropics/claude-code-action@ff9acae5886d41a99ed4ec14b7dc147d55834722 # v1.0.77 with: anthropic_api_key: ${{ secrets.ANTHROPIC_API_KEY }} track_progress: ${{ inputs.track_progress }} diff --git a/.github/workflows/_codeql.yml b/.github/workflows/_codeql.yml index 164c5146f..7dbc4cb94 100644 --- a/.github/workflows/_codeql.yml +++ b/.github/workflows/_codeql.yml @@ -50,7 +50,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@v4 + uses: github/codeql-action/init@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -77,9 +77,9 @@ jobs: # Autobuild attempts to build any compiled languages (C/C++, C#, Go, Java, or Swift). # If this step fails, then you should remove it and run the build manually - name: Autobuild - uses: github/codeql-action/autobuild@v4 + uses: github/codeql-action/autobuild@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v4 + uses: github/codeql-action/analyze@38697555549f1db7851b81482ff19f1fa5c4fedc # v4.34.1 with: category: "/language:${{ matrix.language }}"