saeidjeddi
diff --git a/‎.github/workflows/codeql.yml‎
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/codeql.yml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/release-python.yml‎
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/release-python.yml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎.github/workflows/test-python.yml‎
Lines changed: 1 addition & 1 deletion b/‎.github/workflows/test-python.yml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎.github/workflows/zizmor.yml‎
Lines changed: 2 additions & 2 deletions b/‎.github/workflows/zizmor.yml‎
Lines changed: 2 additions & 2 deletions
@@ -56,7 +56,7 @@ jobs:
 
  # Initializes the CodeQL tools for scanning.
  - name: Initialize CodeQL
- uses: github/codeql-action/init@v3
+ uses: github/codeql-action/init@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3
  with:
  languages: ${{ matrix.language }}
  build-mode: none
@@ -72,6 +72,6 @@ jobs:
  pip install -e .
 
  - name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@v3
+ uses: github/codeql-action/analyze@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3
  with:
  category: "/language:${{ matrix.language }}"
@@ -80,14 +80,14 @@ jobs:
  name: all-dist-${{ github.run_id }}
  path: dist/
  - name: Publish package distributions to TestPyPI
- uses: pypa/gh-action-pypi-publish@release/v1
+ uses: pypa/gh-action-pypi-publish@76f52bc884231f62b9a034ebfe128415bbaabdfc # release/v1
  with:
  repository-url: https://test.pypi.org/legacy/
  skip-existing: true
  attestations: ${{ env.DRY_RUN }}
  - name: Publish package distributions to PyPI
  if: startsWith(env.DRY_RUN, 'false')
- uses: pypa/gh-action-pypi-publish@release/v1
+ uses: pypa/gh-action-pypi-publish@76f52bc884231f62b9a034ebfe128415bbaabdfc # release/v1
 
  post-publish:
  needs: [publish]
 
@@ -50,7 +50,7 @@ jobs:
  - name: Copy the test runner file
  run: cp .github/workflows/runtests.py django_repo/tests/runtests_.py
  - name: Start MongoDB
- uses: supercharge/mongodb-github-action@1.12.0
+ uses: supercharge/mongodb-github-action@90004df786821b6308fb02299e5835d0dae05d0d # 1.12.0
  with:
  mongodb-version: 6.0
  - name: Run tests
 
@@ -18,15 +18,15 @@ jobs:
  with:
  persist-credentials: false
  - name: Setup Rust
- uses: actions-rust-lang/setup-rust-toolchain@v1
+ uses: actions-rust-lang/setup-rust-toolchain@9d7e65c320fdb52dcd45ffaa68deb6c02c8754d9 # v1
  - name: Get zizmor
  run: cargo install zizmor
  - name: Run zizmor
  run: zizmor --format sarif . > results.sarif
  env:
  GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
  - name: Upload SARIF file
- uses: github/codeql-action/upload-sarif@v3
+ uses: github/codeql-action/upload-sarif@ff0a06e83cb2de871e5a09832bc6a81e7276941f # v3
  with:
  sarif_file: results.sarif
  category: zizmor