Skip to content

Commit 7268136

Browse files
authored
Merge pull request #662 from Wikid82/renovate/development-weekly-non-major-updates
chore(deps): update weekly-non-major-updates (development)
2 parents 04aa3db + 05d54fc commit 7268136

3 files changed

Lines changed: 6 additions & 6 deletions

File tree

.github/workflows/codeql.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -50,7 +50,7 @@ jobs:
5050
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
5151

5252
- name: Initialize CodeQL
53-
uses: github/codeql-action/init@6bc82e05fd0ea64601dd4b465378bbcf57de0314 # v4
53+
uses: github/codeql-action/init@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4
5454
with:
5555
languages: ${{ matrix.language }}
5656
# Use CodeQL config to exclude documented false positives
@@ -66,10 +66,10 @@ jobs:
6666
cache-dependency-path: backend/go.sum
6767

6868
- name: Autobuild
69-
uses: github/codeql-action/autobuild@6bc82e05fd0ea64601dd4b465378bbcf57de0314 # v4
69+
uses: github/codeql-action/autobuild@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4
7070

7171
- name: Perform CodeQL Analysis
72-
uses: github/codeql-action/analyze@6bc82e05fd0ea64601dd4b465378bbcf57de0314 # v4
72+
uses: github/codeql-action/analyze@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4
7373
with:
7474
category: "/language:${{ matrix.language }}"
7575

.github/workflows/security-pr.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -286,7 +286,7 @@ jobs:
286286
- name: Upload Trivy SARIF to GitHub Security
287287
if: steps.check-artifact.outputs.artifact_exists == 'true' || github.event_name == 'push' || github.event_name == 'pull_request'
288288
# github/codeql-action v4
289-
uses: github/codeql-action/upload-sarif@f959778b39f110f7919139e242fa5ac47393c877
289+
uses: github/codeql-action/upload-sarif@b13d724d35ff0a814e21683638ed68ed34cf53d1
290290
with:
291291
sarif_file: 'trivy-binary-results.sarif'
292292
category: ${{ steps.pr-info.outputs.is_push == 'true' && format('security-scan-{0}', github.event.workflow_run.head_branch) || format('security-scan-pr-{0}', steps.pr-info.outputs.pr_number) }}

.github/workflows/supply-chain-pr.yml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -337,8 +337,8 @@ jobs:
337337
echo " Total: ${TOTAL_COUNT}"
338338
339339
- name: Upload SARIF to GitHub Security
340-
if: steps.set-target.outputs.image_name != ''
341-
uses: github/codeql-action/upload-sarif@6bc82e05fd0ea64601dd4b465378bbcf57de0314 # v4
340+
if: steps.check-artifact.outputs.artifact_found == 'true'
341+
uses: github/codeql-action/upload-sarif@45cbd0c69e560cd9e7cd7f8c32362050c9b7ded2 # v4
342342
continue-on-error: true
343343
with:
344344
sarif_file: grype-results.sarif

0 commit comments

Comments
 (0)