fix(security): autofix 3rd party Github Actions should be pinned

Author: aikido-autofix[bot]

.github/workflows/check-links.yml

@@ -11,11 +11,11 @@ jobs:
         uses: actions/checkout@v4.1.4
 
       - name: Download .markdownlint.json
-        uses: suisei-cn/actions-download-file@v1.4.0
+        uses: suisei-cn/actions-download-file@15306412d2c75df56b46844362b86b65235b7db1 # v1.4.0
         with:
           url: "https://raw.githubusercontent.com/fharper/gh-configs/main/.markdownlinkcheck.json"
 
       - name: Validate Links
-        uses: gaurav-nelson/github-action-markdown-link-check@v1
+        uses: gaurav-nelson/github-action-markdown-link-check@5c5dfc0ac2e225883c0e5f03a85311ec2830d368 # v1
         with:
           config-file: '.markdownlinkcheck.json'

.github/workflows/check-markdown.yml

@@ -10,12 +10,12 @@ jobs:
         uses: actions/checkout@v4.1.4
 
       - name: Download .markdownlint.json
-        uses: suisei-cn/actions-download-file@v1.4.0
+        uses: suisei-cn/actions-download-file@15306412d2c75df56b46844362b86b65235b7db1 # v1.4.0
         with:
           url: "https://raw.githubusercontent.com/fharper/gh-configs/main/.markdownlint.json"
 
       - name: Validate Markdown
-        uses: DavidAnson/markdownlint-cli2-action@v9
+        uses: DavidAnson/markdownlint-cli2-action@5b7c9f74fec47e6b15667b2cc23c63dff11e449e # v9
         with:
           command: config
           globs: |

.github/workflows/check-nodejs.yml

@@ -23,7 +23,7 @@ jobs:
         run: npm install eslint-config-standard eslint-plugin-import eslint-plugin-n eslint-plugin-promise eslint-formatter-pretty@v5.0.0
 
       - name: Download .eslintrc.yml
-        uses: suisei-cn/actions-download-file@v1.6.0
+        uses: suisei-cn/actions-download-file@818d6b7dc8fe73f2f924b6241f2b1134ca1377d9 # v1.6.0
         with:
           url: "https://raw.githubusercontent.com/fharper/gh-configs/main/.eslintrc.yml"
 

.github/workflows/check-signed.yml

@@ -11,4 +11,4 @@ jobs:
         uses: actions/checkout@v4.1.4
 
       - name: Check if the commits are signed
-        uses: 1Password/check-signed-commits-action@v1
+        uses: 1Password/check-signed-commits-action@ed2885f3ed2577a4f5d3c3fe895432a557d23d52 # v1

.github/workflows/check-yaml.yml

@@ -11,12 +11,12 @@ jobs:
         uses: actions/checkout@v4.1.4
 
       - name: Download .yamllint.yml
-        uses: suisei-cn/actions-download-file@v1.4.0
+        uses: suisei-cn/actions-download-file@15306412d2c75df56b46844362b86b65235b7db1 # v1.4.0
         with:
           url: "https://raw.githubusercontent.com/fharper/gh-configs/main/.yamllint.yml"
 
       - name: Lint YAML files
-        uses: karancode/yamllint-github-action@v2.1.1
+        uses: karancode/yamllint-github-action@fdef6bc189425ecc84cc4543b2674566c0827053 # v2.1.1
         with:
           yamllint_config_datapath: .yamllint.yml
           yamllint_strict: true