diff --git a/.github/workflows/ci-codeql.yml b/.github/workflows/ci-codeql.yml index b9921780d..9ef87ae31 100644 --- a/.github/workflows/ci-codeql.yml +++ b/.github/workflows/ci-codeql.yml @@ -30,13 +30,13 @@ jobs: uses: actions/checkout@9c091bb21b7c1c1d1991bb908d89e4e9dddfe3e0 # v7.0.0 - name: ๐Ÿ Initialize CodeQL - uses: github/codeql-action/init@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 + uses: github/codeql-action/init@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 with: languages: ${{ matrix.language }} queries: +security-extended,security-and-quality - name: ๐Ÿ› ๏ธ Autobuild - uses: github/codeql-action/autobuild@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 + uses: github/codeql-action/autobuild@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 - name: ๐Ÿงช Perform CodeQL Analysis - uses: github/codeql-action/analyze@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 + uses: github/codeql-action/analyze@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 diff --git a/.github/workflows/pr-title-comment.yml b/.github/workflows/pr-title-comment.yml index a3117f269..6b3829802 100644 --- a/.github/workflows/pr-title-comment.yml +++ b/.github/workflows/pr-title-comment.yml @@ -54,7 +54,7 @@ jobs: - name: ๐Ÿ’ฌ Post title error if: steps.result.outputs.has_error == 'true' - uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3.0.4 + uses: marocchino/sticky-pull-request-comment@5770ad5eb8f42dd2c4f34da00c94c5381e49af88 # v3.0.5 with: number: ${{ steps.result.outputs.number }} header: pr-title-lint-error @@ -69,7 +69,7 @@ jobs: - name: ๐Ÿงน Clear title error if: steps.result.outputs.has_error == 'false' - uses: marocchino/sticky-pull-request-comment@0ea0beb66eb9baf113663a64ec522f60e49231c0 # v3.0.4 + uses: marocchino/sticky-pull-request-comment@5770ad5eb8f42dd2c4f34da00c94c5381e49af88 # v3.0.5 with: number: ${{ steps.result.outputs.number }} header: pr-title-lint-error diff --git a/.github/workflows/trivy-scan.yml b/.github/workflows/trivy-scan.yml index 2e0f307b4..2f9dd672d 100644 --- a/.github/workflows/trivy-scan.yml +++ b/.github/workflows/trivy-scan.yml @@ -44,7 +44,7 @@ jobs: output: trivy-results.sarif - name: ๐Ÿ“ค Upload results to code scanning - uses: github/codeql-action/upload-sarif@8aad20d150bbac5944a9f9d289da16a4b0d87c1e # v4.36.2 + uses: github/codeql-action/upload-sarif@54f647b7e1bb85c95cddabcd46b0c578ec92bc1a # v4.36.3 with: sarif_file: trivy-results.sarif category: trivy-fs