Merge pull request #2 from opencastsoftware/renovate/github-tags-gradle/gradle-build-action-vulnerability

Pin gradle/gradle-build-action action to a8f7551 [SECURITY]

Author: DavidGregory084

.github/workflows/ci.yml

@@ -38,7 +38,7 @@ jobs:
           jdkFile: ${{ steps.download-java.outputs.jdkFile }}
 
       - name: Build & Test
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa # v2
         with:
           arguments: build --info
 
@@ -51,6 +51,6 @@ jobs:
 
       - name: Publish To Sonatype
         if: github.event_name != 'pull_request' && (startsWith(github.ref, 'refs/tags/v') || github.ref == 'refs/heads/main')
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa # v2
         with:
           arguments: publishAllPublicationsToMavenCentral

.github/workflows/dependency-graph.yml

@@ -36,12 +36,12 @@ jobs:
           jdkFile: ${{ steps.download-java.outputs.jdkFile }}
 
       - name: Setup Dependency Graph
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa # v2
         with:
           dependency-graph: generate-and-submit
 
       - name: Generate Dependency Graph Snapshot
-        uses: gradle/gradle-build-action@v2
+        uses: gradle/gradle-build-action@a8f75513eafdebd8141bd1cd4e30fcd194af8dfa # v2
         env:
           DEPENDENCY_GRAPH_INCLUDE_CONFIGURATIONS: 'compileClasspath|runtimeClasspath'
         with: