From eb9e9a0e948b6a6d04a7fbfddae3d6ba72020ea8 Mon Sep 17 00:00:00 2001
From: "renovate-bot-cbcoutinho[bot]"
 <210269379+renovate-bot-cbcoutinho[bot]@users.noreply.github.com>
Date: Mon, 5 May 2025 02:06:57 +0000
Subject: [PATCH] Pin dependencies

---
 .github/workflows/docker-build-publish.yml | 10 +++++-----
 .github/workflows/test.yml                 |  4 ++--
 Dockerfile                                 |  2 +-
 docker-compose.yml                         |  6 +++---
 poetry.lock                                |  2 +-
 pyproject.toml                             |  6 +++---
 6 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/.github/workflows/docker-build-publish.yml b/.github/workflows/docker-build-publish.yml
index e75844b..1895b79 100644
--- a/.github/workflows/docker-build-publish.yml
+++ b/.github/workflows/docker-build-publish.yml
@@ -14,11 +14,11 @@ jobs:
 
     steps:
       - name: Checkout repository
-        uses: actions/checkout@v4
+        uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
 
       - name: Docker meta
         id: meta
-        uses: docker/metadata-action@v5
+        uses: docker/metadata-action@902fa8ec7d6ecbf8d84d538b9b233a880e428804 # v5
         with:
           # list of Docker images to use as base name for tags
           images: |
@@ -36,18 +36,18 @@ jobs:
             type=raw,value=latest,enable={{is_default_branch}}
 
       - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v3
+        uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2 # v3
 
       - name: Log in to GitHub Container Registry
         if: github.event_name != 'pull_request'
-        uses: docker/login-action@v3
+        uses: docker/login-action@74a5d142397b4f367a81961eba4e8cd7edddf772 # v3
         with:
           registry: ghcr.io
           username: ${{ github.actor }}
           password: ${{ secrets.GITHUB_TOKEN }}
 
       - name: Build and push Docker image
-        uses: docker/build-push-action@v6
+        uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1 # v6
         with:
           push: ${{ github.event_name != 'pull_request' }}
           tags: ${{ steps.meta.outputs.tags }}
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index fe17e3b..b32969b 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -10,10 +10,10 @@ jobs:
     runs-on: ubuntu-latest
 
     steps:
-      - uses: actions/checkout@v4.2.2
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
 
       - name: Run docker compose
-        uses: hoverkraft-tech/compose-action@v2.0.1
+        uses: hoverkraft-tech/compose-action@e5813a5909aca4ae36058edae58f6e52b9c971f8 # v2.0.1
         with:
           compose-file: "./docker-compose.yml"
 
diff --git a/Dockerfile b/Dockerfile
index 968b03e..6cd71a8 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-FROM ghcr.io/astral-sh/uv:python3.11-alpine
+FROM ghcr.io/astral-sh/uv:python3.11-alpine@sha256:c77e10ca22ef1021e1cafcbaee9595b5f9d8d9f2b1fe4cc7e908b981bab73ee7
 
 WORKDIR /app
 
diff --git a/docker-compose.yml b/docker-compose.yml
index e56df73..dc9ec6e 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -3,7 +3,7 @@ services:
   # https://hub.docker.com/_/mariadb
   db:
     # Note: Check the recommend version here: https://docs.nextcloud.com/server/latest/admin_manual/installation/system_requirements.html#server
-    image: mariadb:lts
+    image: mariadb:lts@sha256:663d4d3e652220e3c618564dd401ae33ee5ea2b31aafd13c6d4e8ed29b8df733
     restart: always
     command: --transaction-isolation=READ-COMMITTED
     volumes:
@@ -17,11 +17,11 @@ services:
   # Note: Redis is an external service. You can find more information about the configuration here:
   # https://hub.docker.com/_/redis
   redis:
-    image: redis:alpine
+    image: redis:alpine@sha256:f773b35a95e170d92dd4214a3ec4859b1b7960bf56896ae687646d695f311187
     restart: always
 
   app:
-    image: nextcloud
+    image: nextcloud@sha256:ad4da6574b6dcb75c185128b091e6ac613f0aabda7ce7f75c9730d9f706e37d0
     #user: www-data:www-data
     restart: always
     #post_start:
diff --git a/poetry.lock b/poetry.lock
index c9b34e1..4038539 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -973,4 +973,4 @@ files = [
 [metadata]
 lock-version = "2.1"
 python-versions = ">=3.11"
-content-hash = "2dbb647edeb1a7b3091237434a59f19a67a2d84168a20431191eedab6710f1e5"
+content-hash = "9f0b7b38edcfb60fb521fd54a2b43c2a8d8ab2e3bf0c7b5e994a4999fc9d954e"
diff --git a/pyproject.toml b/pyproject.toml
index ab2d35d..59124a0 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -26,6 +26,6 @@ requires = ["poetry-core>=2.0.0,<3.0.0"]
 build-backend = "poetry.core.masonry.api"
 
 [tool.poetry.group.dev.dependencies]
-black = "^25.1.0"
-ipython = "^9.0.2"
-pytest = "^8.2.2"
+black = "25.1.0"
+ipython = "9.2.0"
+pytest = "8.3.5"