chore: update sha to correct pin for workflow actions (#384)

Signed-off-by: Christopher Phillips <32073428+spiffcs@users.noreply.github.com>
anchore · Oct 8, 2024 · 99311be · 99311be
1 parent 2491ad6
commit 99311be
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/.github/workflows/dependabot-build.yml b/.github/workflows/dependabot-build.yml
@@ -19,9 +19,9 @@ jobs:
     steps:
       - name: Fetch Dependabot metadata
         id: dependabot-metadata
-        uses: dependabot/fetch-metadata@v2.2.0
+        uses: dependabot/fetch-metadata@dbb049abf0d677abbd7f7eee0375145b417fdd34 #v2.2.0
 
-      - uses: actions/checkout@dbb049abf0d677abbd7f7eee0375145b417fdd34 #v4.2.0
+      - uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871 #v4.2.0
         if: ${{ steps.dependabot-metadata.outputs.package-ecosystem == 'npm_and_yarn' }}
         with:
           ref: ${{ github.head_ref }}