From 3ee8966a9197753b654c57f93b3e908c315d6d41 Mon Sep 17 00:00:00 2001 From: Yousif Akbar <11247449+yhakbar@users.noreply.github.com> Date: Fri, 26 Apr 2024 15:52:49 -0400 Subject: [PATCH] chore: Pinning all actions --- .github/workflows/pipelines-delegated.yml | 10 ++++----- .github/workflows/pipelines-root.yml | 26 +++++++++++------------ 2 files changed, 18 insertions(+), 18 deletions(-) diff --git a/.github/workflows/pipelines-delegated.yml b/.github/workflows/pipelines-delegated.yml index be92818..c80de84 100644 --- a/.github/workflows/pipelines-delegated.yml +++ b/.github/workflows/pipelines-delegated.yml @@ -15,13 +15,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Preflight Checks - uses: gruntwork-io/pipelines-preflight-action@main + uses: gruntwork-io/pipelines-preflight-action@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} - name: Pipelines Orchestrate id: orchestrate - uses: gruntwork-io/pipelines-orchestrate@main + uses: pipelines-preflight-action@v2.1.0 with: token: ${{ secrets.PIPELINES_READ_TOKEN || secrets.GITHUB_TOKEN }} @@ -47,7 +47,7 @@ jobs: - name: Bootstrap Workflow id: bootstrap - uses: gruntwork-io/pipelines-bootstrap@main + uses: gruntwork-io/pipelines-bootstrap@v0.0.1 with: token: ${{ secrets.PIPELINES_READ_TOKEN }} change_type: ${{ matrix.jobs.ChangeType }} @@ -61,7 +61,7 @@ jobs: - name: "Run terragrunt ${{ steps.bootstrap.outputs.terragrunt_command }} in ${{ steps.bootstrap.outputs.working_directory }}" id: terragrunt - uses: gruntwork-io/pipelines-aws-execute@main + uses: gruntwork-io/pipelines-aws-execute@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} account_id: ${{ steps.bootstrap.outputs.account_id }} @@ -72,7 +72,7 @@ jobs: - name: Update comment if: always() - uses: gruntwork-io/pipelines-status-update@main + uses: gruntwork-io/pipelines-status-update@v0.2.0 with: step_name: ${{ matrix.jobs.ChangeType }} step_working_directory: ${{ matrix.jobs.WorkingDirectory }} diff --git a/.github/workflows/pipelines-root.yml b/.github/workflows/pipelines-root.yml index 3227bd3..2ebbda5 100644 --- a/.github/workflows/pipelines-root.yml +++ b/.github/workflows/pipelines-root.yml @@ -19,13 +19,13 @@ jobs: runs-on: ubuntu-latest steps: - name: Preflight Checks - uses: gruntwork-io/pipelines-preflight-action@main + uses: gruntwork-io/pipelines-preflight-action@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} - name: Pipelines Orchestrate id: orchestrate - uses: gruntwork-io/pipelines-orchestrate@main + uses: pipelines-preflight-action@v2.1.0 with: token: ${{ secrets.PIPELINES_READ_TOKEN }} @@ -51,7 +51,7 @@ jobs: - name: Bootstrap Workflow id: bootstrap - uses: gruntwork-io/pipelines-bootstrap@main + uses: gruntwork-io/pipelines-bootstrap@v0.0.1 with: token: ${{ secrets.PIPELINES_READ_TOKEN }} change_type: ${{ matrix.jobs.ChangeType }} @@ -68,7 +68,7 @@ jobs: - name: "[ProvisionAccount]: Provision New Account" id: provision_access_control if: ${{ steps.bootstrap.outputs.action == 'PROVISION_ACCOUNT' }} - uses: gruntwork-io/pipelines-provision-account-action@main + uses: gruntwork-io/pipelines-provision-account-action@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} INFRA_ROOT_WRITE_TOKEN: ${{ secrets.INFRA_ROOT_WRITE_TOKEN }} @@ -81,7 +81,7 @@ jobs: # TODO: Rename this as pipelines-apply-core-baselines or something similar # Also, the final Auth to the management account in this action should be done by the pipelines-baseline-child-account-action # instead to prevent the indirection and confusion - uses: gruntwork-io/pipelines-baseline-account-action@main + uses: gruntwork-io/pipelines-baseline-account-action@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} gruntwork_context: ${{ toJson(steps.bootstrap.outputs) }} @@ -89,7 +89,7 @@ jobs: - name: "[TerragruntExecute]: Authenticate with AWS and then Invoke Terragrunt" id: terragrunt if: ${{ steps.bootstrap.outputs.action == 'TERRAGRUNT_EXECUTE' }} - uses: gruntwork-io/pipelines-aws-execute@main + uses: gruntwork-io/pipelines-aws-execute@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} account_id: ${{ steps.bootstrap.outputs.account_id }} @@ -99,7 +99,7 @@ jobs: gruntwork_context: ${{ toJson(steps.bootstrap.outputs) }} - name: Update comment - uses: gruntwork-io/pipelines-status-update@main + uses: gruntwork-io/pipelines-status-update@v0.2.0 if: always() with: step_name: ${{ matrix.jobs.ChangeType }} @@ -131,7 +131,7 @@ jobs: jobs: ${{ fromJson(needs.detect_changes.outputs.pipelines_jobs)[0].NewAccounts }} steps: - name: Update comment - uses: gruntwork-io/pipelines-status-update@main + uses: gruntwork-io/pipelines-status-update@v0.2.0 with: step_name: Baseline Child Account ${{ matrix.jobs.Name }} step_status: "in_progress" @@ -139,7 +139,7 @@ jobs: - name: "[Baseline]: Baseline the Child Account" id: baseline_child_account - uses: gruntwork-io/pipelines-baseline-child-account-action@main + uses: gruntwork-io/pipelines-baseline-child-account-action@v0.0.1 with: PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} account_id: ${{ matrix.jobs.ID }} @@ -147,7 +147,7 @@ jobs: job: ${{ toJson(fromJson(needs.detect_changes.outputs.pipelines_jobs)[0]) }} - name: Update comment - uses: gruntwork-io/pipelines-status-update@main + uses: gruntwork-io/pipelines-status-update@v0.2.0 if: always() with: step_name: Baseline Child Account ${{ matrix.jobs.Name }} @@ -169,7 +169,7 @@ jobs: - name: Bootstrap Workflow id: bootstrap - uses: gruntwork-io/pipelines-bootstrap@main + uses: gruntwork-io/pipelines-bootstrap@v0.0.1 with: token: ${{ secrets.PIPELINES_READ_TOKEN }} change_type: ${{ fromJson(needs.detect_changes.outputs.pipelines_jobs)[0].ChangeType }} @@ -187,7 +187,7 @@ jobs: - name: "Create Access Control PR" id: access_control_pr - uses: gruntwork-io/pipelines-provision-access-control-action@main + uses: gruntwork-io/pipelines-provision-access-control-action@v0.0.1 with: gruntwork_context: ${{ toJson(steps.bootstrap.outputs) }} PIPELINES_READ_TOKEN: ${{ secrets.PIPELINES_READ_TOKEN }} @@ -195,7 +195,7 @@ jobs: - name: "Create and bootstrap delegated Repo" id: provision_delegated_repo - uses: gruntwork-io/pipelines-provision-repo-action@main + uses: gruntwork-io/pipelines-provision-repo-action@v0.0.1 with: gruntwork_context: ${{ toJson(steps.bootstrap.outputs) }} access_control_pull_request_url: ${{ steps.access_control_pr.outputs.pull_request_url }}