Breaking: [AEA-0000] - use common workflows (#88)

fix it

Author: anthony-nhs

.github/dependabot.yml

@@ -4,15 +4,6 @@
 
 version: 2
 updates:
-  - package-ecosystem: "github-actions"
-    # Workflow files stored in the
-    # default location of `.github/workflows`
-    directory: "/"
-    schedule:
-      interval: "daily"
-    commit-message:
-      prefix: "Upgrade: [dependabot] - "
-
   ###################################
   # python  #########################
   ###################################

.github/workflows/pull_request.yml

@@ -15,7 +15,7 @@ jobs:
       tag_format: ${{ steps.load-config.outputs.TAG_FORMAT }}
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
 
       - name: Get asdf version
         id: asdf-version
@@ -27,19 +27,19 @@ jobs:
           echo "TAG_FORMAT=$TAG_FORMAT" >> "$GITHUB_OUTPUT"
 
   quality_checks:
-    uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@ad79b8f5d8dc258c9ec731dc9f6dc47c9f1e7375
+    uses: NHSDigital/eps-common-workflows/.github/workflows/quality-checks.yml@551aab5ce8ce8c16c4a38c8114dfe86acc61bb13
     needs: [get_asdf_version]
     with:
       asdfVersion: ${{ needs.get_asdf_version.outputs.asdf_version }}
     secrets:
       SONAR_TOKEN: ${{ secrets.SONAR_TOKEN }}
 
   pr_title_format_check:
-    uses: NHSDigital/eps-workflow-semantic-release/.github/workflows/pr_title_check.yml@b49130ecbac4f0a052642f6417a0ea0555240fd7
+    uses: NHSDigital/eps-common-workflows/.github/workflows/pr_title_check.yml@551aab5ce8ce8c16c4a38c8114dfe86acc61bb13
 
   dependabot-auto-approve-and-merge:
     needs: quality_checks
-    uses: NHSDigital/eps-workflow-dependabot/.github/workflows/dependabot-auto-approve-and-merge.yml@c78f84e2e6523593bf9b8ac32751c80a206fc73d
+    uses: NHSDigital/eps-common-workflows/.github/workflows/dependabot-auto-approve-and-merge.yml@551aab5ce8ce8c16c4a38c8114dfe86acc61bb13
     secrets:
       AUTOMERGE_APP_ID: ${{ secrets.AUTOMERGE_APP_ID }}
       AUTOMERGE_PEM: ${{ secrets.AUTOMERGE_PEM }}

.github/workflows/release.yml

@@ -14,7 +14,7 @@ jobs:
             tag_format: ${{ steps.load-config.outputs.TAG_FORMAT }}
         steps:
             - name: Checkout code
-              uses: actions/checkout@v5
+              uses: actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8
 
             - name: Get asdf version
               id: asdf-version
@@ -26,7 +26,7 @@ jobs:
                   echo "TAG_FORMAT=$TAG_FORMAT" >> "$GITHUB_OUTPUT"
 
     quality_checks:
-        uses: NHSDigital/eps-workflow-quality-checks/.github/workflows/quality-checks.yml@ad79b8f5d8dc258c9ec731dc9f6dc47c9f1e7375
+        uses: NHSDigital/eps-common-workflows/.github/workflows/quality-checks.yml@551aab5ce8ce8c16c4a38c8114dfe86acc61bb13
         needs: [get_asdf_version]
         with:
             asdfVersion: ${{ needs.get_asdf_version.outputs.asdf_version }}
@@ -35,7 +35,7 @@ jobs:
 
     tag_release:
         needs: [quality_checks, get_asdf_version]
-        uses: NHSDigital/eps-workflow-semantic-release/.github/workflows/tag-release.yml@b49130ecbac4f0a052642f6417a0ea0555240fd7
+        uses: NHSDigital/eps-common-workflows/.github/workflows/tag-release.yml@551aab5ce8ce8c16c4a38c8114dfe86acc61bb13
         with:
             dry_run: false
             asdfVersion: ${{ needs.get_asdf_version.outputs.asdf_version }}

action.yml

@@ -1,4 +1,4 @@
-name: 'Run SBOM scripts'
+name: "Run SBOM scripts"
 description: "Scan the current container for an SBOM, and check it for security issues."
 runs:
   using: "composite"
@@ -14,7 +14,7 @@ runs:
       shell: bash
 
     - name: Upload SBOM artifacts
-      uses: actions/upload-artifact@v5
+      uses: actions/upload-artifact@330a01c490aca151604b8cf639adc76d48f6c5d4
       with:
         name: sbom-files
-        path: '**/*sbom-*.json'
+        path: "**/*sbom-*.json"