@@ -43,12 +43,12 @@ jobs:
4343
4444 steps :
4545 - name : Checkout repository
46- uses : actions/checkout@v6
46+ uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 https://github.com/actions/checkout/releases/tag/v6.0.2
4747 with :
4848 token : ${{ secrets.GITHUB_TOKEN }}
4949
5050 - name : Setup Python environment
51- uses : astral-sh/setup-uv@v6
51+ uses : astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0 https://github.com/astral-sh/setup-uv/releases/tag/v7.6.0
5252
5353 - name : Install bump-my-version
5454 run : uv tool install bump-my-version
6666
6767name : Update changelog
6868 id : changelog
69- uses : release-flow/keep-a-changelog-action@v2
69+ uses : release-flow/keep-a-changelog-action@74931dec7ecdbfc8e38ac9ae7e8dd84c08db2f32 # v3.0.0 https://github.com/release-flow/keep-a-changelog-action/releases/tag/v3.0.0
7070 with :
7171 command : bump
7272 version : ${{ inputs.bump-type }}
@@ -75,14 +75,14 @@ jobs:
7575
7676 - name : Query changelog for release notes
7777 id : query_changelog
78- uses : release-flow/keep-a-changelog-action@v2
78+ uses : release-flow/keep-a-changelog-action@74931dec7ecdbfc8e38ac9ae7e8dd84c08db2f32 # v3.0.0 https://github.com/release-flow/keep-a-changelog-action/releases/tag/v3.0.0
7979 with :
8080 command : query
8181 version : latest
8282
8383 - name : Create Pull Request
8484 id : create_pr
85- uses : peter-evans/create-pull-request@v7
85+ uses : peter-evans/create-pull-request@c0f553fe549906ede9cf27b5156039d195d2ece0 # v8.1.0 https://github.com/peter-evans/create-pull-request/releases/tag/v8.1.0
8686 with :
8787 commit-message : " chore: bump version to ${{ steps.bump.outputs.current-version }} (${{ inputs.bump-type }} bump)"
8888 title : " Bump version to ${{ steps.bump.outputs.current-version }} (${{ inputs.bump-type }} bump)"
0 commit comments