Skip to content

Commit 24ba5b2

Browse files
dependabot[bot]CalinaCristian
authored andcommitted
chore(ci)(deps): bump the actions-minor-patch group across 1 directory with 4 updates
Bumps the actions-minor-patch group with 4 updates in the / directory: [pnpm/action-setup](https://github.com/pnpm/action-setup), [github/codeql-action](https://github.com/github/codeql-action), [advanced-security/dismiss-alerts](https://github.com/advanced-security/dismiss-alerts) and [zizmorcore/zizmor-action](https://github.com/zizmorcore/zizmor-action). Updates `pnpm/action-setup` from 4.3.0 to 4.4.0 - [Release notes](https://github.com/pnpm/action-setup/releases) - [Commits](pnpm/action-setup@b906aff...fc06bc1) Updates `github/codeql-action` from 4.32.2 to 4.36.1 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@45cbd0c...87557b9) Updates `advanced-security/dismiss-alerts` from 2.0.0 to 2.0.2 - [Release notes](https://github.com/advanced-security/dismiss-alerts/releases) - [Commits](advanced-security/dismiss-alerts@3478381...046d6b4) Updates `zizmorcore/zizmor-action` from 0.4.1 to 0.5.6 - [Release notes](https://github.com/zizmorcore/zizmor-action/releases) - [Commits](zizmorcore/zizmor-action@1356984...5f14fd0) --- updated-dependencies: - dependency-name: advanced-security/dismiss-alerts dependency-version: 2.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-minor-patch - dependency-name: github/codeql-action dependency-version: 4.35.5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor-patch - dependency-name: pnpm/action-setup dependency-version: 4.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor-patch - dependency-name: zizmorcore/zizmor-action dependency-version: 0.5.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: actions-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>
1 parent 21f78d9 commit 24ba5b2

3 files changed

Lines changed: 5 additions & 5 deletions

File tree

.github/workflows/apollo-vertex-registry-check.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -133,7 +133,7 @@ jobs:
133133
pnpm-lock.yaml
134134
135135
- name: Setup pnpm
136-
uses: pnpm/action-setup@b906affcce14559ad1aafd4ab0e942779e9f58b1 # v4
136+
uses: pnpm/action-setup@fc06bc1257f339d1d5d8b3a19a8cae5388b55320 # v5.0.0
137137

138138
- name: Setup Node.js
139139
uses: actions/setup-node@49933ea5288caeca8642d1e84afbd3f7d6820020 # v4

.github/workflows/codeql.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -50,15 +50,15 @@ jobs:
5050
persist-credentials: false
5151

5252
- name: Initialize CodeQL
53-
uses: github/codeql-action/init@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4.32.2
53+
uses: github/codeql-action/init@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4.36.1
5454
with:
5555
languages: ${{ matrix.language }}
5656
build-mode: ${{ matrix.build-mode }}
5757
config-file: .github/codeql/codeql-config.yml
5858

5959
- name: Perform CodeQL Analysis
6060
id: analyze
61-
uses: github/codeql-action/analyze@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4.32.2
61+
uses: github/codeql-action/analyze@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4.36.1
6262
with:
6363
category: /language:${{ matrix.language }}
6464
output: sarif-results
@@ -72,7 +72,7 @@ jobs:
7272
# for source-file suppressions, reviewers must manually check.
7373
- name: Dismiss suppressed alerts
7474
if: github.ref == 'refs/heads/main' && matrix.language == 'javascript-typescript'
75-
uses: advanced-security/dismiss-alerts@3478381bd53e9f9a9ea1c23bd25ef0ec236e0d06 # v2
75+
uses: advanced-security/dismiss-alerts@046d6b48d2e43cf563f96f67332c47c432eff83e # v2.0.2
7676
with:
7777
sarif-id: ${{ steps.analyze.outputs['sarif-id'] }}
7878
sarif-file: sarif-results/javascript.sarif

.github/workflows/security-scan.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -33,7 +33,7 @@ jobs:
3333
persist-credentials: false
3434

3535
- name: Run Zizmor Security Scan
36-
uses: zizmorcore/zizmor-action@135698455da5c3b3e55f73f4419e481ab68cdd95 # v0.4.1
36+
uses: zizmorcore/zizmor-action@5f14fd08f7cf1cb1609c1e344975f152c7ee938d # v0.5.6
3737
with:
3838
advanced-security: true
3939
min-confidence: medium

0 commit comments

Comments
 (0)