diff --git a/.github/workflows/action_compliance.yaml b/.github/workflows/action_compliance.yaml index a66db3fd2..f6f718910 100644 --- a/.github/workflows/action_compliance.yaml +++ b/.github/workflows/action_compliance.yaml @@ -16,7 +16,7 @@ jobs: - name: checkout uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Ensure SHA pinned actions - uses: zgosalvez/github-actions-ensure-sha-pinned-actions@0901cf7b71c7ea6261ec69a3dc2bd3f9264f893e # v3.0.12 + uses: zgosalvez/github-actions-ensure-sha-pinned-actions@5d6ac37a4cef8b8df67f482a8e384987766f0213 # v3.0.17 with: allowlist: | slsa-framework/slsa-github-generator