Bump github/codeql-action from 3.28.19 to 4.30.8 #390

	#
	# Repository analysis
	#

	# NOTES:
	# This workflow uses PSRule, and DevSkim.
	# You can read more about these linting tools and configuration options here:
	# PSRule - https://aka.ms/ps-rule and https://github.com/Microsoft/PSRule.Rules.MSFT.OSS
	# DevSkim - https://github.com/microsoft/DevSkim-Action and https://github.com/Microsoft/DevSkim

	name: Analyze
	on:
	push:
	branches: [ main, 'release/*' ]
	pull_request:
	branches: [ main, 'release/*' ]
	schedule:
	- cron: '15 20 * * 0' # At 08:15 PM, on Sunday each week
	workflow_dispatch: {}

	permissions: {}

	jobs:
	oss:
	name: Analyze with PSRule
	runs-on: ubuntu-latest
	permissions:
	contents: read
	steps:

	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	# Run self analysis
	- name: Run PSRule analysis (self)
	uses: Microsoft/ps-rule@46451b8f5258c41beb5ae69ed7190ccbba84112c # v2.9.0
	with:
	source: src/PSRule.Rules.MSFT.OSS/

	devskim:
	name: Analyze with DevSkim
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write
	steps:

	- name: Checkout
	uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2

	- name: Run DevSkim scanner
	uses: microsoft/DevSkim-Action@a6b6966a33b497cd3ae2ebc406edf8f4cc2feec6 # v1.0.15
	with:
	directory-to-scan: src/

	- name: Upload results to security tab
	uses: github/codeql-action/upload-sarif@f443b600d91635bebf5b0d9ebc620189c0d6fba5 # v4.30.8
	with:
	sarif_file: devskim-results.sarif

Provide feedback