diff --git a/.github/workflows/build-publish.yml b/.github/workflows/build-publish.yml index 07a990b4..9f4f5c72 100644 --- a/.github/workflows/build-publish.yml +++ b/.github/workflows/build-publish.yml @@ -113,7 +113,7 @@ jobs: # images to GHCR first, run a Trivy scan and Copa patch on those, and then push the patched images # to both GHCR and ACR. - name: Authenticate to GHCR - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 + uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0 with: registry: ghcr.io username: ${{ github.repository_owner }} @@ -203,7 +203,7 @@ jobs: az login --identity az acr login -n ${{ vars.AZURE_REGISTRY_SERVER }} - name: Authenticate to GHCR - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 + uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0 with: registry: ghcr.io username: ${{ github.repository_owner }} diff --git a/.github/workflows/patch.yml b/.github/workflows/patch.yml index b8861567..d85ef30f 100644 --- a/.github/workflows/patch.yml +++ b/.github/workflows/patch.yml @@ -84,7 +84,7 @@ jobs: # on the GHCR images, perform a Copa patch if there are vulnerabilities, and then push the patched images # to both GHCR and ACR. - name: Authenticate to GHCR - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 + uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0 with: registry: ghcr.io username: ${{ github.repository_owner }} @@ -163,7 +163,7 @@ jobs: az login --identity az acr login -n ${{ vars.AZURE_REGISTRY_SERVER }} - name: Authenticate to GHCR - uses: docker/login-action@343f7c4344506bcbf9b4de18042ae17996df046d # v3.0.0 + uses: docker/login-action@0d4c9c5ea7693da7b068278f7b52bda2a190a446 # v3.2.0 with: registry: ghcr.io username: ${{ github.repository_owner }}