4141
4242 steps :
4343 - name : Harden Runner
44- uses : step-security/harden-runner@df199fb7be9f65074067a9eb93f12bb4c5547cf2 # v2.13.3
44+ uses : step-security/harden-runner@a90bcbc6539c36a85cdfeb73f7e2f433735f215b # v2.15.0
4545 with :
4646 egress-policy : audit
4747 disable-telemetry : true
@@ -51,15 +51,15 @@ jobs:
5151
5252
5353 - name : Setup Go environment
54- uses : actions/setup-go@44694675825211faa026b3c33043df3e48a5fa00 # v6.0 .0
54+ uses : actions/setup-go@4b73464bb391d4059bd26b0524d20df3927bd417 # v6.3 .0
5555 with :
5656 cache : true
5757 go-version-file : go.mod
5858 cache-dependency-path : ' **/go.sum'
5959
6060 # Initializes the CodeQL tools for scanning.
6161 - name : Initialize CodeQL
62- uses : github/codeql-action/init@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
62+ uses : github/codeql-action/init@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
6363 with :
6464 languages : ${{ matrix.language }}
6565 # If you wish to specify custom queries, you can do so here or in a config file.
6969 # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
7070 # If this step fails, then you should remove it and run the build manually (see below)
7171 - name : Autobuild
72- uses : github/codeql-action/autobuild@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
72+ uses : github/codeql-action/autobuild@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
7373
7474 # ℹ️ Command-line programs to run using the OS shell.
7575 # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
8282 # ./location_of_script_within_repo/buildscript.sh
8383
8484 - name : Perform CodeQL Analysis
85- uses : github/codeql-action/analyze@19b2f06db2b6f5108140aeb04014ef02b648f789 # v4.31.11
85+ uses : github/codeql-action/analyze@89a39a4e59826350b863aa6b6252a07ad50cf83e # v4.32.4
8686 with :
8787 category : " /language:${{matrix.language}}"
0 commit comments