From edf1274a45d33f16ddacfc60a21914af8808d93f Mon Sep 17 00:00:00 2001 From: Picnic-Bot Date: Sun, 11 Jun 2023 01:01:48 +0000 Subject: [PATCH] Upgrade github/codeql-action v2.2.11 -> v2.3.6 See: - https://github.com/github/codeql-action/compare/v2.3.5...v2.3.6 - https://github.com/github/codeql-action/compare/v2.3.4...v2.3.5 - https://github.com/github/codeql-action/compare/v2.3.3...v2.3.4 - https://github.com/github/codeql-action/compare/v2.3.2...v2.3.3 - https://github.com/github/codeql-action/compare/v2.3.1...v2.3.2 - https://github.com/github/codeql-action/compare/v2.3.0...v2.3.1 - https://github.com/github/codeql-action/compare/v2.2.12...v2.3.0 - https://github.com/github/codeql-action/compare/v2.2.11...v2.2.12 --- .github/workflows/codeql.yml | 4 ++-- .github/workflows/openssf-scorecard.yml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9456ab1700d..17718cf5c02 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -32,13 +32,13 @@ jobs: distribution: temurin cache: maven - name: Initialize CodeQL - uses: github/codeql-action/init@v2.2.11 + uses: github/codeql-action/init@83f0fe6c4988d98a455712a27f0255212bba9bd4 # v2.3.6 with: languages: ${{ matrix.language }} - name: Perform minimal build if: matrix.language == 'java' run: mvn -T1C clean install -DskipTests -Dverification.skip - name: Perform CodeQL analysis - uses: github/codeql-action/analyze@v2.2.11 + uses: github/codeql-action/analyze@83f0fe6c4988d98a455712a27f0255212bba9bd4 # v2.3.6 with: category: /language:${{ matrix.language }} diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml index 202e8c170dd..c15bca23d80 100644 --- a/.github/workflows/openssf-scorecard.yml +++ b/.github/workflows/openssf-scorecard.yml @@ -31,6 +31,6 @@ jobs: results_format: sarif publish_results: ${{ github.ref == 'refs/heads/master' }} - name: Update GitHub's code scanning dashboard - uses: github/codeql-action/upload-sarif@v2.2.11 + uses: github/codeql-action/upload-sarif@83f0fe6c4988d98a455712a27f0255212bba9bd4 # v2.3.6 with: sarif_file: results.sarif