Pin GitHub actions and associated tooling to git hashes

[AlCutter]

Pins our GitHub Action configs and the clusterfuzzlite tooling to explicit git hashes.

This reduces the potential for compromised dependencies to undermine our own repo security.

[codecov-commenter]

Codecov Report

Base: 89.33% // Head: 89.33% // No change to project coverage 👍

Coverage data is based on head (69abf68) compared to base (4a0f207).
Patch has no changes to coverable lines.

Additional details and impacted files

@@           Coverage Diff           @@
##             main      #45   +/-   ##
=======================================
  Coverage   89.33%   89.33%           
=======================================
  Files           7        7           
  Lines         497      497           
=======================================
  Hits          444      444           
  Misses         48       48           
  Partials        5        5           

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[smeiklej]

Can you remind me how to rerun the fuzzing check?

[AlCutter]

Can you remind me how to rerun the fuzzing check?

There's a "re-run" button on the action details page, but the issue seems to be upstream in the fuzzer action/library itself :/