diff --git a/.github/workflows/dependency-review.yml b/.github/workflows/dependency-review.yml index 3643433..04e18d4 100644 --- a/.github/workflows/dependency-review.yml +++ b/.github/workflows/dependency-review.yml @@ -9,7 +9,7 @@ permissions: jobs: dependency-review: - uses: cuioss/cuioss-organization/.github/workflows/reusable-dependency-review.yml@072cef7145e9735ace4f1f40bcaf07ef86258b0a # v0.3.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-dependency-review.yml@6a5470e3e9d597b7edf34907476a373bceee31b3 # v0.3.1 permissions: contents: read pull-requests: write diff --git a/.github/workflows/maven.yml b/.github/workflows/maven.yml index e46a9d7..4759a70 100644 --- a/.github/workflows/maven.yml +++ b/.github/workflows/maven.yml @@ -16,7 +16,7 @@ jobs: # Run on push events, OR on pull_request only if from a fork # This prevents duplicate runs: push handles internal branches, PR handles forks if: github.event_name != 'pull_request' || github.event.pull_request.head.repo.full_name != github.event.pull_request.base.repo.full_name - uses: cuioss/cuioss-organization/.github/workflows/reusable-maven-build.yml@072cef7145e9735ace4f1f40bcaf07ef86258b0a # v0.3.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-maven-build.yml@6a5470e3e9d597b7edf34907476a373bceee31b3 # v0.3.1 secrets: SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }} OSS_SONATYPE_USERNAME: ${{ secrets.OSS_SONATYPE_USERNAME }} diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index e21eb04..1cf4fdc 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -12,7 +12,7 @@ permissions: jobs: analysis: - uses: cuioss/cuioss-organization/.github/workflows/reusable-scorecards.yml@072cef7145e9735ace4f1f40bcaf07ef86258b0a # v0.3.0 + uses: cuioss/cuioss-organization/.github/workflows/reusable-scorecards.yml@6a5470e3e9d597b7edf34907476a373bceee31b3 # v0.3.1 permissions: security-events: write id-token: write