keii.dev
+3
-3
.github/workflows/codeql.yml
+3
-3
.github/workflows/codeql.yml
···
50
50
51
51
# Initializes the CodeQL tools for scanning.
52
52
- name: Initialize CodeQL
53
-
uses: github/codeql-action/init@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
53
+
uses: github/codeql-action/init@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
54
54
with:
55
55
languages: ${{ matrix.language }}
56
56
# If you wish to specify custom queries, you can do so here or in a config file.
···
60
60
# Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
61
61
# If this step fails, then you should remove it and run the build manually (see below)
62
62
- name: Autobuild
63
-
uses: github/codeql-action/autobuild@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
63
+
uses: github/codeql-action/autobuild@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
64
64
65
65
# ℹ️ Command-line programs to run using the OS shell.
66
66
# 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
···
73
73
# ./location_of_script_within_repo/buildscript.sh
74
74
75
75
- name: Perform CodeQL Analysis
76
-
uses: github/codeql-action/analyze@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
76
+
uses: github/codeql-action/analyze@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
77
77
with:
78
78
category: '/language:${{matrix.language}}'
+1
-1
.github/workflows/scorecard.yml
+1
-1
.github/workflows/scorecard.yml
···
59
59
60
60
# Upload the results to GitHub's code scanning dashboard.
61
61
- name: Upload Scan Results
62
-
uses: github/codeql-action/upload-sarif@b7bf0a3ed3ecfa44160715d7c442788f65f0f923 # v3.23.2
62
+
uses: github/codeql-action/upload-sarif@8a470fddafa5cbb6266ee11b37ef4d8aae19c571 # v3.24.6
63
63
with:
64
64
sarif_file: results.sarif