ci: hash pinning of actions, fix other dependencies/settings

[mdevolde]

ci: hash pinning of actions, fix other dependencies/settings

Why the pull request was made

In order to adopt good practices against supply chain attacks, actions in our CI are now pinned by their commit hash, and some parameters/versions were updated to increase security.

Summary of changes

• Hash pinning of actions in our CI
• Fix some CI dependencies versions
• Edit some parameters in the CI to increase security

Screenshots (if appropriate):

Not applicable.

How has this been tested?

Ran the CI with new settings.

Resources

Not applicable.

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• Documentation update (changes to documentation only)
• Refactor / code style update (non-breaking change that improves code structure or readability)
• Tests / CI improvement (adding or updating tests or CI configuration only)
• Other (please describe):

Checklist

• Followed the project's contributing guidelines.
• Updated any relevant tests.
• Updated any relevant documentation.
• Added comments to your code where necessary.
• Formatted your code, run the linters, checked types and tests.