From 7b16a5f20b20a0867b9f6e2b659ded7991ce6dec Mon Sep 17 00:00:00 2001
From: "we-renovate[bot]" <162337394+we-renovate[bot]@users.noreply.github.com>
Date: Wed, 19 Jun 2024 14:54:15 +0000
Subject: [PATCH] fix(deps): update all non-major dependencies

---
 .github/workflows/gradle-library.yml |  2 +-
 .github/workflows/gradle-service.yml |  2 +-
 .github/workflows/scan-images.yml    | 10 +++++-----
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/.github/workflows/gradle-library.yml b/.github/workflows/gradle-library.yml
index 3a84189..3f6372d 100644
--- a/.github/workflows/gradle-library.yml
+++ b/.github/workflows/gradle-library.yml
@@ -99,7 +99,7 @@ jobs:
           java-version: ${{ inputs.java-version }}
 
       - name: Setup Gradle
-        uses: gradle/actions/setup-gradle@31ae3562f68c96d481c31bc1a8a55cc1be162f83 # v3.4.1
+        uses: gradle/actions/setup-gradle@dbbdc275be76ac10734476cc723d82dfe7ec6eda # v3.4.2
 
       - name: Write dependency lockfile for security scan
         env:
diff --git a/.github/workflows/gradle-service.yml b/.github/workflows/gradle-service.yml
index d879025..e7366d3 100644
--- a/.github/workflows/gradle-service.yml
+++ b/.github/workflows/gradle-service.yml
@@ -81,7 +81,7 @@ jobs:
           java-version: ${{ inputs.java-version }}
 
       - name: Setup Gradle
-        uses: gradle/actions/setup-gradle@31ae3562f68c96d481c31bc1a8a55cc1be162f83 # v3.4.1
+        uses: gradle/actions/setup-gradle@dbbdc275be76ac10734476cc723d82dfe7ec6eda # v3.4.2
 
       - name: Build and test with Gradle
         env:
diff --git a/.github/workflows/scan-images.yml b/.github/workflows/scan-images.yml
index b2cac95..a96d125 100644
--- a/.github/workflows/scan-images.yml
+++ b/.github/workflows/scan-images.yml
@@ -55,7 +55,7 @@ jobs:
           docker pull ${{ matrix.image }}
 
       - name: Vulnerability scan
-        uses: wetransform/gha-trivy@v2
+        uses: wetransform/gha-trivy@8a8c1ba0444e4f9308ba94f3d004d67aac8cc65f # v2.0.1
         with:
           image-ref: ${{ matrix.image }}
           create-test-report: ${{ inputs.create-test-report }}
@@ -69,14 +69,14 @@ jobs:
     steps:
       - name: Merge SBOM artifacts
         if: ${{ inputs.remove-individual-artifacts }}
-        uses: actions/upload-artifact/merge@v4
+        uses: actions/upload-artifact/merge@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
         with:
           name: SBOM (CycloneDX) [all-individual-results]
           pattern: SBOM (CycloneDX) * # name used by gha-trivy action
           delete-merged: true
 
       - name: Download all SBOM artifacts
-        uses: actions/download-artifact@v4
+        uses: actions/download-artifact@65a9edc5881444af0b9093a5e628f2fe47ea3b2e # v4.1.7
         with:
           path: sboms
           pattern: SBOM (CycloneDX) * # name used by gha-trivy action
@@ -117,7 +117,7 @@ jobs:
           cyclonedx-cli convert --input-file merged/sbom.json --output-file merged/sbom.csv --output-format csv
 
       - name: Upload combined SBOMs
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
         with:
           name: Merged SBOMs (CycloneDX)
           path: merged/
@@ -125,7 +125,7 @@ jobs:
 
       - name: Merge HTML report artifacts
         if: ${{ inputs.remove-individual-artifacts }}
-        uses: actions/upload-artifact/merge@v4
+        uses: actions/upload-artifact/merge@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3
         with:
           name: Vulnerability report (HTML)
           pattern: Vulnerability report (HTML)* # name used by gha-trivy action