From c804b2e0ad766f345204dbf2f129284f7872f0e9 Mon Sep 17 00:00:00 2001
From: Shizuo Fujita <fujita@clear-code.com>
Date: Fri, 27 Mar 2026 16:03:01 +0900
Subject: [PATCH] ci: use sha pinning to mitigate

Signed-off-by: Shizuo Fujita <fujita@clear-code.com>
---
 .github/workflows/linux-ruby-head.yml | 4 ++--
 .github/workflows/linux.yml           | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/linux-ruby-head.yml b/.github/workflows/linux-ruby-head.yml
index 5fa7717..4d35c3c 100644
--- a/.github/workflows/linux-ruby-head.yml
+++ b/.github/workflows/linux-ruby-head.yml
@@ -30,8 +30,8 @@ jobs:
           --health-retries 5
     name: Ruby ${{ matrix.ruby }} with PostgreSQL ${{ matrix.postgres }} unit testing on ${{ matrix.os }}
     steps:
-    - uses: actions/checkout@v6
-    - uses: ruby/setup-ruby@v1
+    - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+    - uses: ruby/setup-ruby@4dc28cf14d77b0afa6832d9765ac422dbf0dfedd # v1.298.0
       with:
         ruby-version: ${{ matrix.ruby }}
         bundler-cache: true
diff --git a/.github/workflows/linux.yml b/.github/workflows/linux.yml
index 4c15155..a283d86 100644
--- a/.github/workflows/linux.yml
+++ b/.github/workflows/linux.yml
@@ -40,8 +40,8 @@ jobs:
           --health-retries 5
     name: Ruby ${{ matrix.ruby }} with PostgreSQL ${{ matrix.postgres }} unit testing on ${{ matrix.os }}
     steps:
-    - uses: actions/checkout@v6
-    - uses: ruby/setup-ruby@v1
+    - uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
+    - uses: ruby/setup-ruby@4dc28cf14d77b0afa6832d9765ac422dbf0dfedd # v1.298.0
       with:
         ruby-version: ${{ matrix.ruby }}
         bundler-cache: true