Pin Snyk action to latest commit hash

Closes #40380

Signed-off-by: Bruno Oliveira da Silva <bruno@abstractj.com>

.github/workflows/snyk-analysis.yml

@@ -26,7 +26,7 @@ jobs:
       - name: Build Keycloak
         uses: ./.github/actions/build-keycloak
 
-      - uses: snyk/actions/setup@master
+      - uses: snyk/actions/setup@cdb760004ba9ea4d525f2e043745dfe85bb9077e # master
 
       - name: Check for vulnerabilities in Quarkus
         run: snyk test --policy-path=${GITHUB_WORKSPACE}/.github/snyk/.snyk --all-projects --prune-repeated-subdependencies --exclude=tests --sarif-file-output=quarkus-report.sarif quarkus/deployment