From caaa82cc88a5b6d4b5496201d4bbfac65efceab4 Mon Sep 17 00:00:00 2001
From: Fiona Klute <fiona.klute@gmx.de>
Date: Wed, 2 Nov 2022 19:06:17 +0100
Subject: [PATCH] Test Dependabot updates for pinned versions

I'm intentionally pinning a slightly older version of actions/checkout
to see if the update works like it should.

See: https://github.com/dependabot/dependabot-core/issues/4691
---
 .github/dependabot.yaml    | 2 +-
 .github/workflows/main.yml | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/dependabot.yaml b/.github/dependabot.yaml
index ad120f0..5b2d997 100644
--- a/.github/dependabot.yaml
+++ b/.github/dependabot.yaml
@@ -4,7 +4,7 @@ updates:
     directory: '/'
     schedule:
       interval: 'weekly'
-      day: 'saturday'
+      day: 'thursday'
   # Docker checks don't work recursively, so list both directories.
   - package-ecosystem: 'docker'
     directory: '/action-a'
diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 51b6ac7..89e40f9 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -6,7 +6,7 @@ jobs:
     name: Hello World action
     runs-on: ubuntu-20.04
     steps:
-      - uses: actions/checkout@v3
+      - uses: actions/checkout@2541b1294d2704b0964813337f33b291d3f8596b # v3.0.2
       - name: Check Python paths
         run: |
           for p in python python3 /usr/bin/python3; do