From 865b0bc44f694ad9c2295466fbe4c8abea266386 Mon Sep 17 00:00:00 2001
From: Pieter Vander Vennet <pietervdvn@posteo.net>
Date: Thu, 21 Sep 2023 16:09:51 +0200
Subject: [PATCH] Security: pin external github actions

---
 .github/actions/setup-and-validate/action.yml | 2 +-
 .github/workflows/deploy_pietervdvn.yml       | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/actions/setup-and-validate/action.yml b/.github/actions/setup-and-validate/action.yml
index 51201b958..baa0af7a2 100644
--- a/.github/actions/setup-and-validate/action.yml
+++ b/.github/actions/setup-and-validate/action.yml
@@ -19,7 +19,7 @@ runs:
       shell: bash
 
     - name: REUSE compliance check
-      uses: fsfe/reuse-action@v2
+      uses: fsfe/reuse-action@952281636420dd0b691786c93e9d3af06032f138
       
     - name: create generated dir
       run: mkdir ./assets/generated
diff --git a/.github/workflows/deploy_pietervdvn.yml b/.github/workflows/deploy_pietervdvn.yml
index ec51d7ea7..817f25606 100644
--- a/.github/workflows/deploy_pietervdvn.yml
+++ b/.github/workflows/deploy_pietervdvn.yml
@@ -89,7 +89,7 @@ jobs:
         env:
           TARGET_BRANCH: ${{ env.TARGET_BRANCH }}
 
-      - uses: mshick/add-pr-comment@v1
+      - uses: mshick/add-pr-comment@a96c578acba98b60f16c6866d5f20478dc4ef68b
         name: Comment the PR with the review URL
         if: ${{ success() && github.ref != 'refs/heads/develop' && github.ref != 'refs/heads/master' }}
         with: