From cce12f30f4c3495484fe97e14dfddf56596ab05c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Thu, 3 Oct 2024 21:45:40 +0000 Subject: [PATCH] chore(deps): update github/codeql-action digest to 6db8d63 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/codeql.yml | 6 +++--- .github/workflows/eslint.yml | 2 +- .github/workflows/njsscan.yml | 2 +- .github/workflows/ossar.yml | 2 +- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 9ba39da60..a4a1ed7e5 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -74,7 +74,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/init@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3 + uses: github/codeql-action/init@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -88,7 +88,7 @@ jobs: # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/autobuild@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3 + uses: github/codeql-action/autobuild@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -102,6 +102,6 @@ jobs: - name: Perform CodeQL Analysis if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/analyze@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3 + uses: github/codeql-action/analyze@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/eslint.yml b/.github/workflows/eslint.yml index 6a53e7bdb..cb3590deb 100644 --- a/.github/workflows/eslint.yml +++ b/.github/workflows/eslint.yml @@ -57,7 +57,7 @@ jobs: continue-on-error: true - name: Upload analysis results to GitHub - uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3 + uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3 if: steps.eslint-config.outputs.exists == 'true' with: sarif_file: eslint-results.sarif diff --git a/.github/workflows/njsscan.yml b/.github/workflows/njsscan.yml index e93aee172..eed7d7913 100644 --- a/.github/workflows/njsscan.yml +++ b/.github/workflows/njsscan.yml @@ -67,6 +67,6 @@ jobs: args: ". --sarif --output results.sarif || true" - name: Upload njsscan report if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3 + uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3 with: sarif_file: results.sarif diff --git a/.github/workflows/ossar.yml b/.github/workflows/ossar.yml index d009be055..2614bc580 100644 --- a/.github/workflows/ossar.yml +++ b/.github/workflows/ossar.yml @@ -81,6 +81,6 @@ jobs: # Upload results to the Security tab - name: Upload OSSAR results if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3 + uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3 with: sarif_file: ${{ steps.ossar.outputs.sarifFile }}