From 4b93f741745c85ba40c9d5e5bff3876816ae9e4e Mon Sep 17 00:00:00 2001 From: Picnic-Bot Date: Mon, 26 Feb 2024 02:01:19 +0000 Subject: [PATCH] Upgrade CodeQL v3.23.2 -> v3.24.5 See: - https://github.com/github/codeql-action/blob/main/CHANGELOG.md - https://github.com/github/codeql-action/compare/v3.24.4...v3.24.5 - https://github.com/github/codeql-action/compare/v3.24.3...v3.24.4 - https://github.com/github/codeql-action/compare/v3.24.2...v3.24.3 - https://github.com/github/codeql-action/compare/v3.24.1...v3.24.2 - https://github.com/github/codeql-action/compare/v3.24.0...v3.24.1 - https://github.com/github/codeql-action/compare/v3.23.2...v3.24.0 --- .github/workflows/codeql.yml | 4 ++-- .github/workflows/openssf-scorecard.yml | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index d9a0f8dd0f..1a1e8e3773 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -28,13 +28,13 @@ jobs: java-distribution: temurin maven-version: 3.9.6 - name: Initialize CodeQL - uses: github/codeql-action/init@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2 + uses: github/codeql-action/init@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5 with: languages: ${{ matrix.language }} - name: Perform minimal build if: matrix.language == 'java' run: mvn -T1C clean package -DskipTests -Dverification.skip - name: Perform CodeQL analysis - uses: github/codeql-action/analyze@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2 + uses: github/codeql-action/analyze@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5 with: category: /language:${{ matrix.language }} diff --git a/.github/workflows/openssf-scorecard.yml b/.github/workflows/openssf-scorecard.yml index 1d9c9dba4e..03c553c75b 100644 --- a/.github/workflows/openssf-scorecard.yml +++ b/.github/workflows/openssf-scorecard.yml @@ -31,6 +31,6 @@ jobs: results_format: sarif publish_results: ${{ github.ref == 'refs/heads/master' }} - name: Update GitHub's code scanning dashboard - uses: github/codeql-action/upload-sarif@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2 + uses: github/codeql-action/upload-sarif@47b3d888fe66b639e431abf22ebca059152f1eea # v3.24.5 with: sarif_file: results.sarif