Pin reusable workflows to version 10.4.0

commit: fc7dd2aad2ef2b498c51012c5365b702f5a53d5b [log] [tgz]
author: Piotr P. Karwasz <piotr.github@karwasz.org> Tue Dec 12 10:17:59 2023 +0100
committer: Piotr P. Karwasz <piotr.github@karwasz.org> Tue Dec 12 10:17:59 2023 +0100
tree: 1c47ef6bbb60f2ef3f44472686a4e3dc5d828481
parent: 5f302a5858d087ad7046ea04d6cac25c13d9836f [diff]
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index 0daa1cf..517085a 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml

@@ -38,7 +38,7 @@
 
   build:
     if: github.actor != 'dependabot[bot]'
-    uses: apache/logging-parent/.github/workflows/build-reusable.yaml@main
+    uses: apache/logging-parent/.github/workflows/build-reusable.yaml@e45457c683302242be5e8e7c3c33edf8f0e0ec0e # rel/10.4.0
     with:
       java-version: |
         8
@@ -48,7 +48,7 @@
   deploy-snapshot:
     needs: build
     if: github.repository == 'apache/logging-log4j2' && github.ref_name == '2.x'
-    uses: apache/logging-parent/.github/workflows/deploy-snapshot-reusable.yaml@main
+    uses: apache/logging-parent/.github/workflows/deploy-snapshot-reusable.yaml@e45457c683302242be5e8e7c3c33edf8f0e0ec0e # rel/10.4.0
     # Secrets for deployments
     secrets:
       NEXUS_USER: ${{ secrets.NEXUS_USER }}
@@ -61,7 +61,7 @@
   deploy-release:
     needs: build
     if: github.repository == 'apache/logging-log4j2' && startsWith(github.ref_name, 'release/')
-    uses: apache/logging-parent/.github/workflows/deploy-release-reusable.yaml@main
+    uses: apache/logging-parent/.github/workflows/deploy-release-reusable.yaml@e45457c683302242be5e8e7c3c33edf8f0e0ec0e # rel/10.4.0
     # Secrets for deployments
     secrets:
       GPG_SECRET_KEY: ${{ secrets.LOGGING_GPG_SECRET_KEY }}

diff --git a/.github/workflows/codeql-analysis.yaml b/.github/workflows/codeql-analysis.yaml
index de44077..a008180 100644
--- a/.github/workflows/codeql-analysis.yaml
+++ b/.github/workflows/codeql-analysis.yaml

@@ -30,7 +30,7 @@
 jobs:
 
   analyze:
-    uses: apache/logging-parent/.github/workflows/codeql-analysis-reusable.yaml@main
+    uses: apache/logging-parent/.github/workflows/codeql-analysis-reusable.yaml@e45457c683302242be5e8e7c3c33edf8f0e0ec0e # rel/10.4.0
     with:
       java-version: |
         8

diff --git a/.github/workflows/merge-dependabot.yaml b/.github/workflows/merge-dependabot.yaml
index 83a59f1..52ee1e1 100644
--- a/.github/workflows/merge-dependabot.yaml
+++ b/.github/workflows/merge-dependabot.yaml

@@ -30,7 +30,7 @@
 
   build:
     if: github.repository == 'apache/logging-log4j2' && github.event_name == 'pull_request_target' && github.actor == 'dependabot[bot]'
-    uses: apache/logging-parent/.github/workflows/build-reusable.yaml@main
+    uses: apache/logging-parent/.github/workflows/build-reusable.yaml@e45457c683302242be5e8e7c3c33edf8f0e0ec0e # rel/10.4.0
     with:
       java-version: |
         8
@@ -38,7 +38,7 @@
 
   merge-dependabot:
     needs: build
-    uses: apache/logging-parent/.github/workflows/merge-dependabot-reusable.yaml@main
+    uses: apache/logging-parent/.github/workflows/merge-dependabot-reusable.yaml@e45457c683302242be5e8e7c3c33edf8f0e0ec0e # rel/10.4.0
     with:
       java-version: 17
     permissions:
commit	fc7dd2aad2ef2b498c51012c5365b702f5a53d5b	[log] [tgz]
author	Piotr P. Karwasz <piotr.github@karwasz.org>	Tue Dec 12 10:17:59 2023 +0100
committer	Piotr P. Karwasz <piotr.github@karwasz.org>	Tue Dec 12 10:17:59 2023 +0100
tree	1c47ef6bbb60f2ef3f44472686a4e3dc5d828481
parent	5f302a5858d087ad7046ea04d6cac25c13d9836f [diff]