unrelated commit: pin third party workflow version

yokofly · yokofly · commit 6e878067c45c · 2025-03-03T06:31:45.000-08:00
diff --git a/.github/workflows/manual_trigger_delete_image.yml b/.github/workflows/manual_trigger_delete_image.yml
@@ -15,9 +15,9 @@ jobs:
       packages: write
       contents: read
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v4.1.7
       - name: Generate Python ENV
-        uses: actions/setup-python@v4
+        uses: actions/setup-python@v5.4.0
         with:
           python-version: '3.10'
       - name: pip install requests
diff --git a/.github/workflows/manual_trigger_mark_stable.yml b/.github/workflows/manual_trigger_mark_stable.yml
@@ -30,7 +30,7 @@ jobs:
         env:
           TAG: ${{ github.event.inputs.tag }}
       - name: Add tag to image
-        uses: shrink/actions-docker-registry-tag@v3
+        uses: shrink/actions-docker-registry-tag@v4.0.0
         with:
           registry: ghcr.io
           repository: ${{ github.repository }}
diff --git a/.github/workflows/proton_ci.yml b/.github/workflows/proton_ci.yml
@@ -31,7 +31,7 @@ jobs:
       GH_PERSONAL_ACCESS_TOKEN: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}
     steps:
       - name: Checkout Repo
-        uses: actions/checkout@v2
+        uses: actions/checkout@v4.2.2
         with:
           token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}
           submodules: false
diff --git a/.github/workflows/run_command.yml b/.github/workflows/run_command.yml
@@ -93,7 +93,7 @@ jobs:
       ec2-instance-id: ${{ steps.start-ec2-runner.outputs.ec2-instance-id }}
     steps:
       - name: Configure AWS credentials
-        uses: aws-actions/configure-aws-credentials@v1
+        uses: aws-actions/configure-aws-credentials@v4.1.0
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
@@ -131,24 +131,24 @@ jobs:
       GH_PERSONAL_ACCESS_TOKEN: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}
     steps:
       - name: Configure AWS credentials from Test account
-        uses: aws-actions/configure-aws-credentials@v1
+        uses: aws-actions/configure-aws-credentials@v4.1.0
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
           aws-region: ${{ secrets.AWS_REGION }}
       - name: Login to ghcr.io
-        uses: docker/login-action@v2
+        uses: docker/login-action@v3.3.0
         with:
           registry: ghcr.io
           username: proton_robot
           password: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}
       - name: Checkout Repo
-        uses: actions/checkout@v2
+        uses: actions/checkout@v4.2.2
         with:
           token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}
           submodules: ${{ inputs.submodules }}
       - name: Checkout quark
-        uses: actions/checkout@v3
+        uses: actions/checkout@v4.2.2
         with:
           repository: timeplus-io/quark
           path: quark
@@ -162,7 +162,7 @@ jobs:
           ${{ inputs.command }}
       - name: Release binary
         if: ${{ inputs.upload_files != '' }}
-        uses: softprops/action-gh-release@v1
+        uses: softprops/action-gh-release@v2.2.1
         with:
           files: ${{ inputs.upload_files }}
           token: ${{ secrets.GH_PERSONAL_ACCESS_TOKEN }}
@@ -177,7 +177,7 @@ jobs:
     if: ${{ always() }} # required to stop the runner even if the error happened in the previous jobs
     steps:
       - name: Configure AWS credentials
-        uses: aws-actions/configure-aws-credentials@v1
+        uses: aws-actions/configure-aws-credentials@v4.1.0
         with:
           aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
           aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
