From 4e5691bb382041a77fe6d71d589a2edd2ecc2f5b Mon Sep 17 00:00:00 2001 From: Jared Hatfield Date: Wed, 14 Jan 2026 18:34:47 -0500 Subject: [PATCH 1/2] pin version for add-to-project --- .github/workflows/add-to-project.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/add-to-project.yml b/.github/workflows/add-to-project.yml index 33ac714..152842c 100644 --- a/.github/workflows/add-to-project.yml +++ b/.github/workflows/add-to-project.yml @@ -13,7 +13,7 @@ jobs: name: Add to project runs-on: ubuntu-latest steps: - - uses: actions/add-to-project@v1.0.2 + - uses: actions/add-to-project@244f685bbc3b7adfa8466e08b698b5577571133e # v1.0.2 with: project-url: https://github.com/orgs/UnitVectorY-Labs/projects/41 github-token: ${{ secrets.PROJECT_GITHUB_ACTION }} From 2d93161e89790939c1db91283238cf58eb39fff0 Mon Sep 17 00:00:00 2001 From: Jared Hatfield Date: Wed, 14 Jan 2026 18:41:50 -0500 Subject: [PATCH 2/2] Update action versions in zizmor workflow --- .github/workflows/zizmor.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/zizmor.yml b/.github/workflows/zizmor.yml index 29ba5d2..5472cdf 100644 --- a/.github/workflows/zizmor.yml +++ b/.github/workflows/zizmor.yml @@ -23,12 +23,12 @@ jobs: actions: read steps: - name: Checkout repository - uses: actions/checkout@v6 + uses: actions/checkout@8e8c483db84b4bee98b60c0593521ed34d9990e8 # v6.0.1 with: persist-credentials: false - name: Install the latest version of uv - uses: astral-sh/setup-uv@v7 + uses: astral-sh/setup-uv@61cb8a9741eeb8a550a1b8544337180c0fc8476b # v7.2.0 - name: Run zizmor 🌈 run: uvx zizmor --format sarif . > results.sarif @@ -36,7 +36,7 @@ jobs: GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@v4 + uses: github/codeql-action/upload-sarif@cdefb33c0f6224e58673d9004f47f7cb3e328b89 # v4.31.10 with: sarif_file: results.sarif category: zizmor