Update all actions we use in our workflows to pull from specific pinned commits

[dkotter]

Description of the Change

In order to help protect against compromised actions, instead of including actions based on their major version (like v4), this PR switches all the actions we use to pull based on the commit hash from the latest release.

While this does impact maintenance a bit going forward, it ensures that we we're always using actions that we (hopefully) trust and if an action gets compromised (which happens) we don't have to worry that we're using a compromised action. This also goes along with what GitHub suggests.

Also fixes our E2E workflow which is broken coming out of #148 and #168. We still have one test that fails so I've marked that as skipped for now. An update will be needed to get that working (from what I can tell, the test has never worked).

How to test the Change

Ensure all our workflows still run as expected

Changelog Entry

Developer - Update all third-party actions our workflows rely on to use versions based on specific commit hashes.

Credits

Props @dkotter, @jeffpaul

Checklist:

• I agree to follow this project's Code of Conduct.
• I have updated the documentation accordingly.
• I have added Critical Flows, Test Cases, and/or End-to-End Tests to cover my change.
• All new and existing tests pass.

[jeffpaul]

@vikrampm1 please open an issue for us to tackle the following:

Also fixes our E2E workflow which is broken coming out of #148 and #168. We still have one test that fails so I've marked that as skipped for now. An update will be needed to get that working (from what I can tell, the test has never worked).