File tree Expand file tree Collapse file tree
create-lines-of-code-report Expand file tree Collapse file tree Original file line number Diff line number Diff line change 88 using : " composite"
99 steps :
1010 - name : Checkout
11- uses : actions/checkout@v4
12- - uses : actions/setup-node@v4
11+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
12+ - uses : actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4
1313 with :
1414 node-version : 22
1515 - name : Npm cli install
1616 working-directory : ./docs
1717 run : npm ci
1818 shell : bash
1919 - name : Setup Ruby
20- uses : ruby/setup-ruby@v1.180.1
20+ uses : ruby/setup-ruby@3783f195e29b74ae398d7caca108814bbafde90e # v1.180.1
2121 with :
2222 ruby-version : " 3.2" # Not needed with a .ruby-version file
2323 bundler-cache : true # runs 'bundle install' and caches installed gems automatically
2424 cache-version : 0 # Increment this number if you need to re-download cached gems
2525 working-directory : " ./docs"
2626 - name : Setup Pages
2727 id : pages
28- uses : actions/configure-pages@v5
28+ uses : actions/configure-pages@983d7736d9b0ae728b81ab479565c72886d7745b # v5
2929 - name : Build with Jekyll
3030 working-directory : ./docs
3131 # Outputs to the './_site' directory by default
3636 JEKYLL_ENV : production
3737 - name : Upload artifact
3838 # Automatically uploads an artifact from the './_site' directory by default
39- uses : actions/upload-pages-artifact@v3
39+ uses : actions/upload-pages-artifact@56afc609e74202658d3ffba0e8f6dda462b719fa # v3
4040 with :
4141 path : " docs/_site/"
4242 name : jekyll-docs-${{ inputs.version }}
Original file line number Diff line number Diff line change 3232 run : zip lines-of-code-report.json.zip lines-of-code-report.json
3333 - name : " Upload CLOC report as an artefact"
3434 if : ${{ !env.ACT }}
35- uses : actions/upload-artifact@v4
35+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
3636 with :
3737 name : lines-of-code-report.json.zip
3838 path : ./lines-of-code-report.json.zip
4444 echo "secrets_exist=${{ inputs.idp_aws_report_upload_role_name != '' && inputs.idp_aws_report_upload_bucket_endpoint != '' }}" >> $GITHUB_OUTPUT
4545name : " Authenticate to send the report"
4646 if : steps.check.outputs.secrets_exist == 'true'
47- uses : aws-actions/configure-aws-credentials@v4
47+ uses : aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a # v4
4848 with :
4949 role-to-assume : arn:aws:iam::${{ inputs.idp_aws_report_upload_account_id }}:role/${{ inputs.idp_aws_report_upload_role_name }}
5050 aws-region : ${{ inputs.idp_aws_report_upload_region }}
Original file line number Diff line number Diff line change 3232 run : zip sbom-repository-report.json.zip sbom-repository-report.json
3333 - name : " Upload SBOM report as an artefact"
3434 if : ${{ !env.ACT }}
35- uses : actions/upload-artifact@v4
35+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
3636 with :
3737 name : sbom-repository-report.json.zip
3838 path : ./sbom-repository-report.json.zip
4747 run : zip vulnerabilities-repository-report.json.zip vulnerabilities-repository-report.json
4848 - name : " Upload vulnerabilities report as an artefact"
4949 if : ${{ !env.ACT }}
50- uses : actions/upload-artifact@v4
50+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
5151 with :
5252 name : vulnerabilities-repository-report.json.zip
5353 path : ./vulnerabilities-repository-report.json.zip
5858 run : echo "secrets_exist=${{ inputs.idp_aws_report_upload_role_name != '' && inputs.idp_aws_report_upload_bucket_endpoint != '' }}" >> $GITHUB_OUTPUT
5959 - name : " Authenticate to send the reports"
6060 if : steps.check.outputs.secrets_exist == 'true'
61- uses : aws-actions/configure-aws-credentials@v4
61+ uses : aws-actions/configure-aws-credentials@7474bc4690e29a8392af63c5b98e7449536d5c3a # v4
6262 with :
6363 role-to-assume : arn:aws:iam::${{ inputs.idp_aws_report_upload_account_id }}:role/${{ inputs.idp_aws_report_upload_role_name }}
6464 aws-region : ${{ inputs.idp_aws_report_upload_region }}
Original file line number Diff line number Diff line change 88 using : " composite"
99 steps :
1010 - name : " Check out template repository"
11- uses : actions/checkout@v4
11+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
1212 with :
1313 repository : NHSDigital/nhs-notify-repository-template
1414 path : nhs-notify-repository-template
Original file line number Diff line number Diff line change 2929 does_pull_request_exist : ${{ steps.pr_exists.outputs.does_pull_request_exist }}
3030 steps :
3131 - name : " Checkout code"
32- uses : actions/checkout@v4
32+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
3333 - name : " Set CI/CD variables"
3434 id : variables
3535 run : |
Original file line number Diff line number Diff line change 3737 # tag: ${{ steps.variables.outputs.tag }}
3838 steps :
3939 - name : " Checkout code"
40- uses : actions/checkout@v4
40+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
4141 - name : " Set CI/CD variables"
4242 id : variables
4343 run : |
7070 needs : metadata
7171 steps :
7272 - name : " Checkout code"
73- uses : actions/checkout@v4
74-
73+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
7574 - name : " Get version"
7675 id : get-asset-version
7776 shell : bash
@@ -103,13 +102,13 @@ jobs:
103102 run : |
104103 gh release download ${{steps.get-asset-version.outputs.release_version}} -p jekyll-docs-*.tar --output artifact.tar
105104
106- uses : actions/upload-artifact@v4
105+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
107106 with :
108107 name : jekyll-docs-${{steps.get-asset-version.outputs.release_version}}
109108 path : artifact.tar
110109
111110 - name : Deploy to GitHub Pages
112111 id : deployment
113- uses : actions/deploy-pages@v4
112+ uses : actions/deploy-pages@d6db90164ac5ed86f2b6aed7e0febac5b3c0c03e # v4
114113 with :
115114 artifact_name : jekyll-docs-${{steps.get-asset-version.outputs.release_version}}
Original file line number Diff line number Diff line change 1515 steps :
1616 - name : combine-prs
1717 id : combine-prs
18- uses : github/combine-prs@v5.2.0
18+ uses : github/combine-prs@2909f404763c3177a456e052bdb7f2e85d3a7cb3 # v5.2.0
1919 with :
2020 ci_required : false
2121 labels : dependencies
Original file line number Diff line number Diff line change 1919
2020 steps :
2121 - name : Checkout repository
22- uses : actions/checkout@v5.0.0
23-
22+ uses : actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
2423 - name : " Package and Publish Terraform modules"
2524 run : |
2625 ARTIFACTS_DIR="$PWD/../../artifacts"
Original file line number Diff line number Diff line change @@ -16,16 +16,15 @@ jobs:
1616
1717 steps :
1818 - name : Check out the repository
19- uses : actions/checkout@v4
20-
19+ uses : actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4
2120 - name : Sync repository template
2221 uses : ./.github/actions/sync-template-repo
2322 with :
2423 github_token : ${{ github.token }}
2524
2625 - name : Create Pull Request
2726 if : ${{ !env.ACT }}
28- uses : peter-evans/create-pull-request@v7.0.8
27+ uses : peter-evans/create-pull-request@271a8d0340265f705b14b6d32b9829c1cb33d45e # v7.0.8
2928 with :
3029 token : ${{ secrets.GITHUB_TOKEN }}
3130 commit-message : Drift from template
Original file line number Diff line number Diff line change 5959 # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF
6060 # format to the repository Actions tab.
6161 - name : " Upload artifact"
62- uses : actions/upload-artifact@v4
62+ uses : actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4
6363 with :
6464 name : SARIF file
6565 path : results.sarif
You can’t perform that action at this time.
0 commit comments