From 079f1798ec44688ae6f0bef399afc37d16323ba2 Mon Sep 17 00:00:00 2001 From: Jacob Woffenden Date: Wed, 3 Apr 2024 22:40:37 +0000 Subject: [PATCH] Bump CodeQL to v3.24.9 Signed-off-by: GitHub --- .github/workflows/codeql-analysys.yml | 6 +++--- .github/workflows/scan-image.yml | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/codeql-analysys.yml b/.github/workflows/codeql-analysys.yml index 65e911b..a00819e 100644 --- a/.github/workflows/codeql-analysys.yml +++ b/.github/workflows/codeql-analysys.yml @@ -29,16 +29,16 @@ jobs: - name: Initialise CodeQL id: initialise_codeql - uses: github/codeql-action/init@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8 + uses: github/codeql-action/init@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 with: languages: ${{ matrix.language }} - name: CodeQL Autobuild id: codeql_autobuild - uses: github/codeql-action/autobuild@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8 + uses: github/codeql-action/autobuild@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 - name: CodeQL Analysis id: codeql_analysis - uses: github/codeql-action/analyze@407ffafae6a767df3e0230c3df91b6443ae8df75 # v2.22.8 + uses: github/codeql-action/analyze@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 with: category: "language:${{ matrix.language }}" diff --git a/.github/workflows/scan-image.yml b/.github/workflows/scan-image.yml index 04932b5..96f7a69 100644 --- a/.github/workflows/scan-image.yml +++ b/.github/workflows/scan-image.yml @@ -42,7 +42,7 @@ jobs: - name: Upload SARIF if: always() id: upload_sarif - uses: github/codeql-action/upload-sarif@cdcdbb579706841c47f7063dda365e292e5cad7a # v2.2.7 + uses: github/codeql-action/upload-sarif@1b1aada464948af03b950897e5eb522f92603cc2 # v3.24.9 with: sarif_file: trivy-results.sarif