diff --git a/.github/workflows/shared-secret-scan.yml b/.github/workflows/shared-secret-scan.yml index 4f2d25d..8f71173 100644 --- a/.github/workflows/shared-secret-scan.yml +++ b/.github/workflows/shared-secret-scan.yml @@ -43,7 +43,7 @@ jobs: fetch-depth: 0 - name: Secret Scanning - uses: trufflesecurity/trufflehog@30d5bb91af1a771378349dbbb0c82129392acf70 # v3.95.6 + uses: trufflesecurity/trufflehog@27b0417c16317ca9a472a9a8092acce143b49c55 # v3.95.9 with: extra_args: --results=verified,unverified,unknown --exclude-detectors=AWS @@ -62,7 +62,7 @@ jobs: steps: - name: Send ${{ matrix.alert_type }} alert if: matrix.enabled - uses: dawidd6/action-send-mail@42942bc2f8fba4e611b459a018967a6a7c78c68c # v17 + uses: dawidd6/action-send-mail@94de994a9f6fffee200243214e17002e2920bb59 # v18 with: server_address: smtp.gmail.com server_port: 465