File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change 9393
9494 runs-on : ubuntu-latest
9595 steps :
96- - uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
96+ - uses : actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
9797
9898 - name : Set up QEMU (arm64 support)
9999 uses : docker/setup-qemu-action@06116385d9baf250c9f4dcb4858b16962ea869c3 # v4
@@ -164,15 +164,15 @@ jobs:
164164
165165 - name : Upload Trivy results to Security tab
166166 if : always() && github.event_name != 'pull_request'
167- uses : github/codeql-action/upload-sarif@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4
167+ uses : github/codeql-action/upload-sarif@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4
168168 with :
169169 sarif_file : trivy-results.sarif
170170 category : trivy-${{ inputs.image-name }}
171171
172172
173173 - name : Log podman into GHCR
174174 if : inputs.data-boundary && github.event_name != 'pull_request'
175- uses : redhat-actions/podman-login@v1
175+ uses : redhat-actions/podman-login@4934294ad0449894bcd1e9f191899d7292469603 # v1
176176 with :
177177 registry : ${{ inputs.registry }}
178178 username : ${{ github.actor }}
@@ -211,7 +211,7 @@ jobs:
211211
212212 - name : Upload STIG report
213213 if : always() && inputs.data-boundary && github.event_name != 'pull_request'
214- uses : actions/upload-artifact@v7
214+ uses : actions/upload-artifact@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a # v7
215215 with :
216216 name : stig-${{ inputs.image-name }}
217217 path : |
Original file line number Diff line number Diff line change 5555 # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
5656 steps :
5757 - name : Checkout repository
58- uses : actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6
58+ uses : actions/checkout@df4cb1c069e1874edd31b4311f1884172cec0e10 # v6
5959
6060 # Add any setup steps before running the `github/codeql-action/init` action.
6161 # This includes steps like installing compilers or runtimes (`actions/setup-node`
6565
6666 # Initializes the CodeQL tools for scanning.
6767 - name : Initialize CodeQL
68- uses : github/codeql-action/init@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4
68+ uses : github/codeql-action/init@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4
6969 with :
7070 languages : ${{ matrix.language }}
7171 build-mode : ${{ matrix.build-mode }}
9494 exit 1
9595
9696 - name : Perform CodeQL Analysis
97- uses : github/codeql-action/analyze@7211b7c8077ea37d8641b6271f6a365a22a5fbfa # v4
97+ uses : github/codeql-action/analyze@87557b9c84dde89fdd9b10e88954ac2f4248e463 # v4
9898 with :
9999 category : " /language:${{matrix.language}}"
You can’t perform that action at this time.
0 commit comments