From 31d4b76335ee3c8714059fbea825e487990fb5db Mon Sep 17 00:00:00 2001 From: Denys Fedoryshchenko Date: Mon, 27 Apr 2026 16:14:38 +0300 Subject: [PATCH] ci: pin GitHub Actions and pip dependencies for OpenSSF Scorecard Signed-off-by: Denys Fedoryshchenko --- .github/workflows/main.yml | 12 ++++++------ docker/api/requirements-dev.txt | 4 ++-- 2 files changed, 8 insertions(+), 8 deletions(-) diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml index 96a55cfc..802c0dbc 100644 --- a/.github/workflows/main.yml +++ b/.github/workflows/main.yml @@ -26,10 +26,10 @@ jobs: steps: - name: Check out source code - uses: actions/checkout@v2 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Set up Python - uses: actions/setup-python@master + uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: python-version: ${{ matrix.python-version }} @@ -37,7 +37,7 @@ jobs: working-directory: docker/api run: | python --version - python -m pip install --upgrade pip + python -m pip install --upgrade pip==26.0.1 pip install -r requirements-dev.txt - name: Export environment variables @@ -76,15 +76,15 @@ jobs: steps: - name: Check out source code - uses: actions/checkout@v4 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2 - name: Set up Python - uses: actions/setup-python@v5 + uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 # v6.2.0 with: python-version: '3.10' - name: Install pre-commit - run: pip install pre-commit + run: pip install pre-commit==4.6.0 - name: Run pre-commit hooks run: pre-commit run --all-files --show-diff-on-failure diff --git a/docker/api/requirements-dev.txt b/docker/api/requirements-dev.txt index 2b5aeb27..68b5a68a 100644 --- a/docker/api/requirements-dev.txt +++ b/docker/api/requirements-dev.txt @@ -1,3 +1,3 @@ -r requirements-tests.txt -ruff>=0.9.0 -pre-commit>=4.0.0 +ruff==0.15.12 +pre-commit==4.6.0