diff --git a/.github/workflows/codeql-actions.yml b/.github/workflows/codeql-actions.yml index 67eb26b..c3eb189 100644 --- a/.github/workflows/codeql-actions.yml +++ b/.github/workflows/codeql-actions.yml @@ -31,20 +31,20 @@ jobs: uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 - name: Initialize CodeQL - uses: github/codeql-action/init@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/init@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: languages: actions build-mode: none config-file: .github/codeql/codeql-config-actions.yml - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/analyze@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: category: "/language:actions" output: sarif-results upload: failure-only - name: Upload CodeQL sarif - uses: github/codeql-action/upload-sarif@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/upload-sarif@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: sarif_file: "sarif-results/actions.sarif" diff --git a/.github/workflows/codeql-javascripttypescript.yml b/.github/workflows/codeql-javascripttypescript.yml index 99b0843..8684d98 100644 --- a/.github/workflows/codeql-javascripttypescript.yml +++ b/.github/workflows/codeql-javascripttypescript.yml @@ -29,7 +29,7 @@ jobs: hugo-cachedir: ${{ runner.temp }}/hugo_cache - name: Initialize CodeQL - uses: github/codeql-action/init@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/init@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: languages: javascript-typescript build-mode: none @@ -52,7 +52,7 @@ jobs: HUGO_PARAMS_gitCommit: 'codeql' - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/analyze@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: category: "/language:javascript-typescript" output: sarif-results @@ -68,6 +68,6 @@ jobs: output: "sarif-results/javascript-typescript.sarif" - name: Upload CodeQL sarif - uses: github/codeql-action/upload-sarif@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/upload-sarif@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: sarif_file: "sarif-results/javascript-typescript.sarif" diff --git a/.github/workflows/codescanning-schedule.yml b/.github/workflows/codescanning-schedule.yml index ade27e2..5472812 100644 --- a/.github/workflows/codescanning-schedule.yml +++ b/.github/workflows/codescanning-schedule.yml @@ -34,7 +34,7 @@ jobs: hugo-cachedir: ${{ runner.temp }}/hugo_cache - name: Initialize CodeQL - uses: github/codeql-action/init@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/init@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: languages: ${{ matrix.language }} build-mode: ${{ matrix.build-mode }} @@ -58,7 +58,7 @@ jobs: HUGO_PARAMS_gitCommit: 'codeql' - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/analyze@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: category: "/language:${{ matrix.language }}" output: sarif-results @@ -75,7 +75,7 @@ jobs: output: "sarif-results/${{ matrix.language }}.sarif" - name: Upload CodeQL sarif - uses: github/codeql-action/upload-sarif@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/upload-sarif@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: sarif_file: "sarif-results/${{ matrix.language }}.sarif" @@ -104,6 +104,6 @@ jobs: output: 'trivy-results.sarif' - name: Upload Trivy sarif - uses: github/codeql-action/upload-sarif@a8d1ac45b9a34d11fe398d5503176af0d06b303e # v3.30.7 + uses: github/codeql-action/upload-sarif@755f44910c12a3d7ca0d8c6e42c048b3362f7cec # v3.30.8 with: sarif_file: 'trivy-results.sarif'