Update github-actions (#95)

renovate[bot] · web-flow · commit 67a129dc5544 · 2025-05-03T17:42:37.000Z
Co-authored-by: renovate[bot] &lt;29139614+renovate[bot]@users.noreply.github.com&gt;
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -28,7 +28,7 @@ jobs:
         with:
           fetch-depth: 0
       - name: Setup Go
-        uses: actions/setup-go@dca8468d37b6d090cde2c7b97b738a37134f5ffb
+        uses: actions/setup-go@bb65d8857b81c74a671e81f935d3362a5d718e2f
         with:
           go-version-file: ./go.mod
 
@@ -63,7 +63,7 @@ jobs:
         with:
           fetch-depth: 0
       - name: Setup Go
-        uses: actions/setup-go@dca8468d37b6d090cde2c7b97b738a37134f5ffb
+        uses: actions/setup-go@bb65d8857b81c74a671e81f935d3362a5d718e2f
         with:
           go-version: ${{ matrix.go }}
 
@@ -96,7 +96,7 @@ jobs:
         with:
           fetch-depth: 0
       - name: Setup Go
-        uses: actions/setup-go@dca8468d37b6d090cde2c7b97b738a37134f5ffb
+        uses: actions/setup-go@bb65d8857b81c74a671e81f935d3362a5d718e2f
         with:
           go-version-file: ./go.mod
 
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
@@ -35,12 +35,12 @@ jobs:
 
       # Initializes the CodeQL tools for scanning.
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@f843d94177a3bba7c0d0366e9bb9ff7de65547a9
+        uses: github/codeql-action/init@5eb3ed6614230b1931d5c08df9e096e4ba524f21
         with:
           languages: go
 
       - name: Autobuild
-        uses: github/codeql-action/autobuild@f843d94177a3bba7c0d0366e9bb9ff7de65547a9
+        uses: github/codeql-action/autobuild@5eb3ed6614230b1931d5c08df9e096e4ba524f21
 
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@f843d94177a3bba7c0d0366e9bb9ff7de65547a9
+        uses: github/codeql-action/analyze@5eb3ed6614230b1931d5c08df9e096e4ba524f21
diff --git a/.github/workflows/scorecards.yml b/.github/workflows/scorecards.yml
@@ -43,7 +43,7 @@ jobs:
           persist-credentials: false
 
       - name: "Run analysis"
-        uses: ossf/scorecard-action@de386ed459e2f85111697f50fe076d0ea617a32f
+        uses: ossf/scorecard-action@18cc9b81307fc5ab3c2cd7092955f06dcfdf8c42
         with:
           results_file: results.sarif
           results_format: sarif
@@ -69,6 +69,6 @@ jobs:
 
       # required for Code scanning alerts
       - name: "Upload SARIF results to code scanning"
-        uses: github/codeql-action/upload-sarif@f843d94177a3bba7c0d0366e9bb9ff7de65547a9
+        uses: github/codeql-action/upload-sarif@5eb3ed6614230b1931d5c08df9e096e4ba524f21
         with:
           sarif_file: results.sarif
