diff --git a/.github/workflows/security-codacy.yml b/.github/workflows/security-codacy.yml index d69b150..f67c740 100644 --- a/.github/workflows/security-codacy.yml +++ b/.github/workflows/security-codacy.yml @@ -46,6 +46,6 @@ jobs: gh-code-scanning-compat: true - name: Upload results to code-scanning - uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10 + uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11 with: sarif_file: codacy.sarif diff --git a/.github/workflows/security-codeql.yml b/.github/workflows/security-codeql.yml index 9afb553..4d90d5d 100644 --- a/.github/workflows/security-codeql.yml +++ b/.github/workflows/security-codeql.yml @@ -50,7 +50,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL - uses: github/codeql-action/init@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10 + uses: github/codeql-action/init@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11 with: languages: ${{ matrix.language }} @@ -58,6 +58,6 @@ jobs: queries: ${{ inputs.queries }} - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10 + uses: github/codeql-action/analyze@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11 with: category: /language:${{matrix.language}} diff --git a/.github/workflows/security-ossf-scorecard.yml b/.github/workflows/security-ossf-scorecard.yml index 992df08..69211f6 100644 --- a/.github/workflows/security-ossf-scorecard.yml +++ b/.github/workflows/security-ossf-scorecard.yml @@ -82,6 +82,6 @@ jobs: retention-days: 5 - name: Upload results to code-scanning - uses: github/codeql-action/upload-sarif@23acc5c183826b7a8a97bce3cecc52db901f8251 # v3.25.10 + uses: github/codeql-action/upload-sarif@b611370bb5703a7efb587f9d136a52ea24c5c38c # v3.25.11 with: sarif_file: ossf-scorecard.sarif