From d0f3e049aefc3598304a36f5c62931824739e708 Mon Sep 17 00:00:00 2001
From: Vidya Reddy <59590642+Vidya2606@users.noreply.github.com>
Date: Wed, 5 Feb 2025 13:14:42 -0800
Subject: [PATCH] Pin SHA for security and stability (#118)

---
 .github/workflows/default-labels.yml    | 4 ++--
 .github/workflows/integration-tests.yml | 2 +-
 .github/workflows/prettify-code.yml     | 2 +-
 .github/workflows/unit-tests.yml        | 2 +-
 4 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/.github/workflows/default-labels.yml b/.github/workflows/default-labels.yml
index b0abb51..4d3d222 100644
--- a/.github/workflows/default-labels.yml
+++ b/.github/workflows/default-labels.yml
@@ -13,7 +13,7 @@ jobs:
 
       # Steps represent a sequence of tasks that will be executed as part of the job
       steps:
-         - uses: actions/stale@v9
+         - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9.1.0
            name: Setting Issue as Idle
            with:
               repo-token: ${{ secrets.GITHUB_TOKEN }}
@@ -24,7 +24,7 @@ jobs:
               operations-per-run: 100
               exempt-issue-labels: 'backlog'
 
-         - uses: actions/stale@v9
+         - uses: actions/stale@5bef64f19d7facfb25b37b414482c7164d639639 # v9.1.0
            name: Setting PR as Idle
            with:
               repo-token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/integration-tests.yml b/.github/workflows/integration-tests.yml
index 236412e..96c2846 100644
--- a/.github/workflows/integration-tests.yml
+++ b/.github/workflows/integration-tests.yml
@@ -15,7 +15,7 @@ jobs:
       steps:
          - name: Checkout Source Code
            id: checkout-code
-           uses: actions/checkout@v4
+           uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
          - name: Npm Install and Build
            id: npm-build
            run: |
diff --git a/.github/workflows/prettify-code.yml b/.github/workflows/prettify-code.yml
index f134cbe..0b1db8d 100644
--- a/.github/workflows/prettify-code.yml
+++ b/.github/workflows/prettify-code.yml
@@ -13,6 +13,6 @@ jobs:
            uses: actions/checkout@v4
 
          - name: Enforce Prettier
-           uses: actionsx/prettier@v3
+           uses: actionsx/prettier@3d9f7c3fa44c9cb819e68292a328d7f4384be206 #v3.0.0
            with:
               args: --check .
diff --git a/.github/workflows/unit-tests.yml b/.github/workflows/unit-tests.yml
index 118a640..c251311 100644
--- a/.github/workflows/unit-tests.yml
+++ b/.github/workflows/unit-tests.yml
@@ -13,7 +13,7 @@ jobs:
    unit-test:
       runs-on: ubuntu-latest
       steps:
-         - uses: actions/checkout@v4
+         - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
          - name: Run Unit Tests
            run: |
               npm install