Bump the github-actions group with 2 updates (#620)

Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Daniel Tedman <dbtedman@gmail.com>
dbtedman · Feb 2, 2025 · 4cc89cf · 4cc89cf
1 parent 6ec88c3
commit 4cc89cf
Show file tree

Hide file tree

Showing 4 changed files with 7 additions and 7 deletions.
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -58,7 +58,7 @@ jobs:
             - uses: "pnpm/action-setup@fe02b34f77f8bc703788d5817da081398fad5dd2"
               with: { version: "latest" }
             - name: "Use Node.js ${{ matrix.node-version }}"
-              uses: "actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af"
+              uses: "actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a"
               with:
                   node-version: "${{ matrix.node-version }}"
                   cache: "pnpm"

diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml
@@ -20,7 +20,7 @@ jobs:
             - uses: "pnpm/action-setup@fe02b34f77f8bc703788d5817da081398fad5dd2"
               with:
                   version: "latest"
-            - uses: "actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af"
+            - uses: "actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a"
               with:
                   node-version-file: ".nvmrc"
                   cache: "pnpm"

diff --git a/.github/workflows/sast.yml b/.github/workflows/sast.yml
@@ -37,7 +37,7 @@ jobs:
                   name: "SARIF file"
                   path: "results.sarif"
                   retention-days: 5
-            - uses: "github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c"
+            - uses: "github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4"
               with:
                   sarif_file: "results.sarif"
 
@@ -51,15 +51,15 @@ jobs:
 
         steps:
             - uses: "actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683"
-            - uses: "github/codeql-action/init@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c"
+            - uses: "github/codeql-action/init@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4"
               with:
                   languages: "typescript"
             - uses: "pnpm/action-setup@fe02b34f77f8bc703788d5817da081398fad5dd2"
               with:
                   version: "latest"
-            - uses: "actions/setup-node@39370e3970a6d050c480ffad4ff0ed4d3fdee5af"
+            - uses: "actions/setup-node@1d0ff469b7ec7b3cb9d8673fde0c81c44821de2a"
               with:
                   node-version-file: ".nvmrc"
                   cache: "pnpm"
             - run: "make install"
-            - uses: "github/codeql-action/analyze@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c"
+            - uses: "github/codeql-action/analyze@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4"
diff --git a/Makefile b/Makefile
@@ -49,4 +49,4 @@ upgrade:
 .PHONY: audit_signatures
 audit_signatures:
 	# Not yet available via pnpm as of 21/04/2024.
-	npm audit signatures
+	npm audit signatures || true