From d162194bf54be39d3c2cb131ae83635ba8ead11b Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 22 Oct 2024 19:25:15 +0000 Subject: [PATCH] chore(deps): update github/codeql-action digest to 6624720 Signed-off-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/codeql.yml | 6 +++--- .github/workflows/eslint.yml | 2 +- .github/workflows/njsscan.yml | 2 +- .github/workflows/ossar.yml | 2 +- 4 files changed, 6 insertions(+), 6 deletions(-) diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index ad33e6318..c1cb91c99 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -74,7 +74,7 @@ jobs: # Initializes the CodeQL tools for scanning. - name: Initialize CodeQL if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/init@f779452ac5af1c261dce0346a8f964149f49322b # v3 + uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3 with: languages: ${{ matrix.language }} # If you wish to specify custom queries, you can do so here or in a config file. @@ -88,7 +88,7 @@ jobs: # If this step fails, then you should remove it and run the build manually (see below) - name: Autobuild if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/autobuild@f779452ac5af1c261dce0346a8f964149f49322b # v3 + uses: github/codeql-action/autobuild@662472033e021d55d94146f66f6058822b0b39fd # v3 # ℹī¸ Command-line programs to run using the OS shell. # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun @@ -102,6 +102,6 @@ jobs: - name: Perform CodeQL Analysis if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/analyze@f779452ac5af1c261dce0346a8f964149f49322b # v3 + uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3 with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/eslint.yml b/.github/workflows/eslint.yml index 5b726d43c..11c62eb83 100644 --- a/.github/workflows/eslint.yml +++ b/.github/workflows/eslint.yml @@ -57,7 +57,7 @@ jobs: continue-on-error: true - name: Upload analysis results to GitHub - uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3 + uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3 if: steps.eslint-config.outputs.exists == 'true' with: sarif_file: eslint-results.sarif diff --git a/.github/workflows/njsscan.yml b/.github/workflows/njsscan.yml index fce059824..caeb5abed 100644 --- a/.github/workflows/njsscan.yml +++ b/.github/workflows/njsscan.yml @@ -67,6 +67,6 @@ jobs: args: ". --sarif --output results.sarif || true" - name: Upload njsscan report if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3 + uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3 with: sarif_file: results.sarif diff --git a/.github/workflows/ossar.yml b/.github/workflows/ossar.yml index e004ccdfd..9229af703 100644 --- a/.github/workflows/ossar.yml +++ b/.github/workflows/ossar.yml @@ -81,6 +81,6 @@ jobs: # Upload results to the Security tab - name: Upload OSSAR results if: needs.check.outputs.enabled == 'true' - uses: github/codeql-action/upload-sarif@f779452ac5af1c261dce0346a8f964149f49322b # v3 + uses: github/codeql-action/upload-sarif@662472033e021d55d94146f66f6058822b0b39fd # v3 with: sarif_file: ${{ steps.ossar.outputs.sarifFile }}