From 65bdafc5cc5ea06ef69a82fab3197ea803436c30 Mon Sep 17 00:00:00 2001
From: jaybuidl <jb@kleros.io>
Date: Mon, 27 Jan 2025 23:55:01 +0000
Subject: [PATCH] chore: [StepSecurity] Apply security best practices

---
 .github/workflows/sentry-release.yml | 2 +-
 services/bots/base/Dockerfile        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/sentry-release.yml b/.github/workflows/sentry-release.yml
index 7e07a0a5d..f05f5b4f5 100644
--- a/.github/workflows/sentry-release.yml
+++ b/.github/workflows/sentry-release.yml
@@ -72,7 +72,7 @@ jobs:
       working-directory: web
 
     - name: Create Sentry release
-      uses: getsentry/action-release@v1
+      uses: getsentry/action-release@f6dfa3d84a1c740b94aa45255c5e032b744a095d # v1.9.0
       env:
         SENTRY_AUTH_TOKEN: ${{ secrets.SENTRY_AUTH_TOKEN }}
         SENTRY_ORG: ${{ secrets.SENTRY_ORG }}
diff --git a/services/bots/base/Dockerfile b/services/bots/base/Dockerfile
index 3e1492d08..283ee4504 100644
--- a/services/bots/base/Dockerfile
+++ b/services/bots/base/Dockerfile
@@ -1,4 +1,4 @@
-FROM node:20-alpine
+FROM node:20-alpine@sha256:2cd2a6f4cb37cf8a007d5f1e9aef090ade6b62974c7a274098c390599e8c72b4
 
 WORKDIR /usr/src/app