From 24d29681ef395afaf40fb37941fa14c67836a785 Mon Sep 17 00:00:00 2001 From: Stefano Arlandini Date: Tue, 30 Jan 2024 18:52:08 +0100 Subject: [PATCH] Pin GitHub actions (#803) --- .github/dependabot.yml | 6 ++++++ .github/workflows/publish-release.yaml | 4 ++-- .github/workflows/static-analysis.yaml | 24 +++++++++++++++--------- .github/workflows/tests.yaml | 16 ++++++++-------- 4 files changed, 31 insertions(+), 19 deletions(-) create mode 100644 .github/dependabot.yml diff --git a/.github/dependabot.yml b/.github/dependabot.yml new file mode 100644 index 00000000..b88a67a7 --- /dev/null +++ b/.github/dependabot.yml @@ -0,0 +1,6 @@ +version: 2 +updates: + - package-ecosystem: "github-actions" + directory: "/" + schedule: + interval: weekly diff --git a/.github/workflows/publish-release.yaml b/.github/workflows/publish-release.yaml index 9e7ab3d2..093b517f 100644 --- a/.github/workflows/publish-release.yaml +++ b/.github/workflows/publish-release.yaml @@ -19,13 +19,13 @@ jobs: name: Release version steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 with: token: ${{ secrets.GH_RELEASE_PAT }} fetch-depth: 0 - name: Prepare release - uses: getsentry/action-prepare-release@v1 + uses: getsentry/action-prepare-release@d2cc2db3db92bc5b79a90c316f588f2b13626a2b #v1.5.6 env: GITHUB_TOKEN: ${{ secrets.GH_RELEASE_PAT }} with: diff --git a/.github/workflows/static-analysis.yaml b/.github/workflows/static-analysis.yaml index c96f4586..84857e8f 100644 --- a/.github/workflows/static-analysis.yaml +++ b/.github/workflows/static-analysis.yaml @@ -17,15 +17,17 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 - name: Setup PHP - uses: shivammathur/setup-php@v2 + uses: shivammathur/setup-php@6d7209f44a25a59e904b1ee9f3b0c33ab2cd888d # v2.29.0 with: php-version: '8.2' - name: Install dependencies - run: composer update --no-progress --no-interaction --prefer-dist + uses: ramsey/composer-install@83af392bf5f031813d25e6fe4cd626cdba9a2df6 # v2.2.0 + with: + composer-options: --prefer-dist - name: Run script run: composer phpcs @@ -35,15 +37,17 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 - name: Setup PHP - uses: shivammathur/setup-php@v2 + uses: shivammathur/setup-php@6d7209f44a25a59e904b1ee9f3b0c33ab2cd888d # v2.29.0 with: php-version: '8.3' - name: Install dependencies - run: composer update --no-progress --no-interaction --prefer-dist + uses: ramsey/composer-install@83af392bf5f031813d25e6fe4cd626cdba9a2df6 # v2.2.0 + with: + composer-options: --prefer-dist - name: Run script run: composer phpstan @@ -53,15 +57,17 @@ jobs: runs-on: ubuntu-latest steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 - name: Setup PHP - uses: shivammathur/setup-php@v2 + uses: shivammathur/setup-php@6d7209f44a25a59e904b1ee9f3b0c33ab2cd888d # v2.29.0 with: php-version: '8.3' - name: Install dependencies - run: composer update --no-progress --no-interaction --prefer-dist + uses: ramsey/composer-install@83af392bf5f031813d25e6fe4cd626cdba9a2df6 # v2.2.0 + with: + composer-options: --prefer-dist - name: Run script run: composer psalm -- --php-version=8.0 diff --git a/.github/workflows/tests.yaml b/.github/workflows/tests.yaml index c488affa..9386922f 100644 --- a/.github/workflows/tests.yaml +++ b/.github/workflows/tests.yaml @@ -68,12 +68,12 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 with: fetch-depth: 2 - name: Setup PHP - uses: shivammathur/setup-php@v2 + uses: shivammathur/setup-php@6d7209f44a25a59e904b1ee9f3b0c33ab2cd888d # v2.29.0 with: php-version: ${{ matrix.php }} coverage: pcov @@ -87,7 +87,7 @@ jobs: if: matrix.php == '8.0' && matrix.dependencies == 'lowest' - name: Install dependencies - uses: ramsey/composer-install@v2 + uses: ramsey/composer-install@83af392bf5f031813d25e6fe4cd626cdba9a2df6 # v2.2.0 with: dependency-versions: ${{ matrix.dependencies }} composer-options: --prefer-dist @@ -96,7 +96,7 @@ jobs: run: vendor/bin/phpunit --coverage-clover=build/coverage-report.xml - name: Upload code coverage - uses: codecov/codecov-action@v3 + uses: codecov/codecov-action@4fe8c5f003fae66aa5ebb77cfd3e7bfbbda0b6b0 # v3.1.5 with: file: build/coverage-report.xml @@ -122,10 +122,10 @@ jobs: steps: - name: Checkout - uses: actions/checkout@v4 + uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 - name: Setup PHP - uses: shivammathur/setup-php@v2 + uses: shivammathur/setup-php@6d7209f44a25a59e904b1ee9f3b0c33ab2cd888d # v2.29.0 with: php-version: ${{ matrix.php }} coverage: pcov @@ -138,7 +138,7 @@ jobs: run: composer remove doctrine/dbal doctrine/doctrine-bundle symfony/messenger symfony/twig-bundle symfony/cache symfony/http-client --dev --no-update - name: Install dependencies - uses: ramsey/composer-install@v2 + uses: ramsey/composer-install@83af392bf5f031813d25e6fe4cd626cdba9a2df6 # v2.2.0 with: dependency-versions: ${{ matrix.dependencies }} composer-options: --prefer-dist @@ -147,6 +147,6 @@ jobs: run: vendor/bin/phpunit --coverage-clover=build/coverage-report.xml - name: Upload code coverage - uses: codecov/codecov-action@v3 + uses: codecov/codecov-action@4fe8c5f003fae66aa5ebb77cfd3e7bfbbda0b6b0 # v3.1.5 with: file: build/coverage-report.xml