Skip to content

Commit d1b0d26

Browse files
ci(deps): bump github/codeql-action in the actions-routine group
Bumps the actions-routine group with 1 update: [github/codeql-action](https://github.com/github/codeql-action). Updates `github/codeql-action` from 4.35.4 to 4.35.5 - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@68bde55...9e0d7b8) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: actions-routine ... Signed-off-by: dependabot[bot] <support@github.com>
1 parent 009a9ec commit d1b0d26

4 files changed

Lines changed: 6 additions & 6 deletions

File tree

.github/workflows/build.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -995,7 +995,7 @@ jobs:
995995
trivyignores: ./.trivyignore
996996

997997
- name: Upload Trivy IaC SARIF to Code Scanning
998-
uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
998+
uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
999999
with:
10001000
sarif_file: trivy-iac.sarif
10011001
category: trivy-iac
@@ -1119,7 +1119,7 @@ jobs:
11191119
11201120
- name: Upload Grype SARIF to Code Scanning
11211121
if: always()
1122-
uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
1122+
uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
11231123
with:
11241124
sarif_file: grype-${{ github.event_name }}-${{ matrix.variant.name }}.sarif
11251125
category: grype-${{ github.event_name }}-${{ matrix.variant.name }}

.github/workflows/codeql.yaml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -72,7 +72,7 @@ jobs:
7272
uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6.0.2
7373

7474
- name: Initialize CodeQL
75-
uses: github/codeql-action/init@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
75+
uses: github/codeql-action/init@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
7676
with:
7777
languages: ${{ matrix.language }}
7878
build-mode: ${{ matrix.build-mode }}
@@ -81,6 +81,6 @@ jobs:
8181
config-file: ./.github/codeql/codeql-config.yml
8282

8383
- name: Perform CodeQL analysis
84-
uses: github/codeql-action/analyze@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
84+
uses: github/codeql-action/analyze@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
8585
with:
8686
category: "/language:${{ matrix.language }}"

.github/workflows/sast.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -49,7 +49,7 @@ jobs:
4949
--error || true
5050
5151
- name: Upload Semgrep SARIF to Code Scanning
52-
uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
52+
uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
5353
with:
5454
sarif_file: semgrep.sarif
5555
category: semgrep

.github/workflows/scorecard.yaml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -76,6 +76,6 @@ jobs:
7676
# Upload the results to GitHub's code scanning dashboard (optional).
7777
# Commenting out will disable upload of results to your repo's Code Scanning dashboard
7878
- name: "Upload to code-scanning"
79-
uses: github/codeql-action/upload-sarif@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4.35.4
79+
uses: github/codeql-action/upload-sarif@9e0d7b8d25671d64c341c19c0152d693099fb5ba # v4.35.5
8080
with:
8181
sarif_file: results.sarif

0 commit comments

Comments
 (0)