Bump advanced-security/maven-dependency-submission-action (#46)

Bumps [advanced-security/maven-dependency-submission-action](https://github.com/advanced-security/maven-dependency-submission-action) from 4.0.1 to 4.0.2. - [Release notes](https://github.com/advanced-security/maven-dependency-submission-action/releases) - [Commits](advanced-security/maven-dependency-submission-action@73da251...bfd2106) Fixes #42 --- updated-dependencies: - dependency-name: advanced-security/maven-dependency-submission-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
seeburger-ag · Mar 12, 2024 · 3576c52 · 3576c52
1 parent cfc07f9
commit 3576c52
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/maven-verify.yml b/.github/workflows/maven-verify.yml
@@ -31,7 +31,7 @@ jobs:
 
     # Optional: Uploads the full dependency graph to GitHub to improve the quality of Dependabot alerts this repository can receive
     - name: Update dependency graph
-      uses: advanced-security/maven-dependency-submission-action@73da25169f2ac4d336320399ba58070deebc1208
+      uses: advanced-security/maven-dependency-submission-action@bfd2106013da0957cdede0b6c39fb5ca25ae375e
       # fails with read-only token on PRs, so only run it on main pushes
       # if DISABLE_MAVEN_DEPENDENCY_SUBMISSION is set to true, skip this step
       if: ${{ github.ref == 'refs/heads/main' && github.event_name == 'push' && vars.DISABLE_MAVEN_DEPENDENCY_SUBMISSION != 'true' }}