Chore [deps:github-actions]: Bump terraform-linters/setup-tflint from 4.0.0 to 4.1.0 #4015

Workflow file for this run

.github/workflows/code-scanning.yml at 615a0b8

	name: "Code Scanning"

	on:
	push:
	branches:
	- main
	pull_request:
	branches:
	- main
	schedule:
	- cron: '35 8 * * 1-5'

	permissions:
	contents: read

	jobs:
	dependency-review:
	name: Dependency Review
	runs-on: ubuntu-latest
	if: github.event_name == 'pull_request'
	steps:
	- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	api.deps.dev:443
	api.github.com:443
	api.securityscorecards.dev:443
	github.com:443
	- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	show-progress: 'false'
	persist-credentials: 'false'
	- uses: actions/dependency-review-action@4081bf99e2866ebe428fc0477b69eb4fcda7220a # v4.4.0

	codeql:
	name: CodeQL
	runs-on: ubuntu-latest
	permissions:
	actions: read
	contents: read
	security-events: write
	steps:
	- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
	with:
	disable-sudo: true
	egress-policy: audit
	- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	show-progress: 'false'
	persist-credentials: 'false'
	- name: Initialize CodeQL
	uses: github/codeql-action/init@8e0b1c74b1d5a0077b04d064c76ee714d3da7637 # v2.14.6
	with:
	languages: javascript-typescript
	queries: security-extended,security-and-quality
	- name: Perform CodeQL Analysis
	uses: github/codeql-action/analyze@8e0b1c74b1d5a0077b04d064c76ee714d3da7637 # v2.14.6
	with:
	category: "/language:javascript-typescript"

	gha-workflow-security:
	name: GHA Workflow Security
	runs-on: ubuntu-latest
	if: github.event_name == 'pull_request'
	permissions:
	contents: read
	steps:
	- uses: step-security/harden-runner@91182cccc01eb5e619899d80e4e971d6181294a7 # v2.10.1
	with:
	disable-sudo: true
	egress-policy: block
	allowed-endpoints: >
	api.github.com:443
	github.com:443
	- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
	with:
	show-progress: 'false'
	persist-credentials: 'false'
	- name: Ensure GitHub action versions are pinned to SHAs
	uses: zgosalvez/github-actions-ensure-sha-pinned-actions@38608ef4fb69adae7f1eac6eeb88e67b7d083bfd # v3.0.16

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Chore [deps:github-actions]: Bump terraform-linters/setup-tflint from 4.0.0 to 4.1.0 #4015

Workflow file

Chore [deps:github-actions]: Bump terraform-linters/setup-tflint from 4.0.0 to 4.1.0 #4015

Jobs

Run details

Workflow file for this run