From 58efaea729c37c9240329a2ebaf3a11b3c988753 Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Wed, 22 Apr 2026 18:46:37 +0000
Subject: [PATCH] chore(deps): pin vexxhost/github-actions action to ee90fdf

---
 .github/workflows/image.yml      | 2 +-
 .github/workflows/nix-image.yaml | 4 ++--
 build-docker-image/action.yml    | 2 +-
 3 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/.github/workflows/image.yml b/.github/workflows/image.yml
index 7e24f03..f49da6b 100644
--- a/.github/workflows/image.yml
+++ b/.github/workflows/image.yml
@@ -34,7 +34,7 @@ jobs:
       packages: write
       security-events: write
     steps:
-      - uses: vexxhost/github-actions/build-docker-image@main
+      - uses: vexxhost/github-actions/build-docker-image@ee90fdf77bca9a1426af5073b44cae27dc0bdaca # main
         id: build
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/.github/workflows/nix-image.yaml b/.github/workflows/nix-image.yaml
index 533936d..3e75b96 100644
--- a/.github/workflows/nix-image.yaml
+++ b/.github/workflows/nix-image.yaml
@@ -27,7 +27,7 @@ jobs:
     runs-on: ubuntu-24.04
     timeout-minutes: 10
     steps:
-      - uses: vexxhost/github-actions/nix-image@main
+      - uses: vexxhost/github-actions/nix-image@ee90fdf77bca9a1426af5073b44cae27dc0bdaca # main
         id: build
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
@@ -40,7 +40,7 @@ jobs:
     runs-on: ubuntu-24.04-arm
     timeout-minutes: 10
     steps:
-      - uses: vexxhost/github-actions/nix-image@main
+      - uses: vexxhost/github-actions/nix-image@ee90fdf77bca9a1426af5073b44cae27dc0bdaca # main
         id: build
         with:
           token: ${{ secrets.GITHUB_TOKEN }}
diff --git a/build-docker-image/action.yml b/build-docker-image/action.yml
index 7302d6f..b219165 100644
--- a/build-docker-image/action.yml
+++ b/build-docker-image/action.yml
@@ -61,7 +61,7 @@ runs:
       with:
         msg: ${{ fromJSON(steps.build.outputs.metadata)['image.name'] }}
         separator: ","
-    - uses: vexxhost/github-actions/scan-image@main
+    - uses: vexxhost/github-actions/scan-image@ee90fdf77bca9a1426af5073b44cae27dc0bdaca # main
       with:
         image-ref: ${{ steps.split.outputs._0 }}
         fail-on-vulnerability: ${{ inputs.push == 'true' && 'false' || 'true' }}