From 72bd214202b8c79277c270685553ff2c9d46ac33 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Sat, 10 Aug 2024 05:44:26 +0000 Subject: [PATCH] Update github-actions --- .github/workflows/codeql.yml | 6 +++--- .github/workflows/scorecards.yml | 4 ++-- 2 files changed, 5 insertions(+), 5 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 1832138..bd97130 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -35,12 +35,12 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@5c02493ebfd65b28fd3b082c65e5af2cd745d91f + uses: github/codeql-action/init@25ad3c8e4067d58361177f34122cf9ae8abb4bd0 with: languages: go - name: Autobuild - uses: github/codeql-action/autobuild@5c02493ebfd65b28fd3b082c65e5af2cd745d91f + uses: github/codeql-action/autobuild@25ad3c8e4067d58361177f34122cf9ae8abb4bd0 - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@5c02493ebfd65b28fd3b082c65e5af2cd745d91f + uses: github/codeql-action/analyze@25ad3c8e4067d58361177f34122cf9ae8abb4bd0 diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml index 26ad27a..b1bfeb0 100644 --- a/.github/workflows/scorecards.yml +++ b/.github/workflows/scorecards.yml @@ -43,7 +43,7 @@ jobs: persist-credentials: false - name: "Run analysis" - uses: ossf/scorecard-action@bf0193107d39ac594cadc115b8761393acc7a421 + uses: ossf/scorecard-action@ab9729375aeb5f298cbbdcf9167c9fd974416537 with: results_file: results.sarif results_format: sarif @@ -69,6 +69,6 @@ jobs: # required for Code scanning alerts - name: "Upload SARIF results to code scanning" - uses: github/codeql-action/upload-sarif@5c02493ebfd65b28fd3b082c65e5af2cd745d91f + uses: github/codeql-action/upload-sarif@25ad3c8e4067d58361177f34122cf9ae8abb4bd0 with: sarif_file: results.sarif