Merge pull request #1737 from bunkerity/dependabot/github_actions/dev/github/codeql-action-3.27.5

deps/gha: bump github/codeql-action from 3.27.4 to 3.27.5
2026-05-24 09:28:37 +00:00 · 2024-11-22 12:54:07 +01:00 · 2024-11-22 12:54:07 +01:00 · 1bfe6a6f69
commit 1bfe6a6f69
parent da4f65df4f 66ac7c72b0
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -35,12 +35,12 @@ jobs:
          python -m pip install --no-cache-dir --require-hashes -r src/common/db/requirements.txt
          echo "CODEQL_PYTHON=$(which python)" >> $GITHUB_ENV
      - name: Initialize CodeQL
-        uses: github/codeql-action/init@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+        uses: github/codeql-action/init@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
        with:
          languages: ${{ matrix.language }}
          config-file: ./.github/codeql.yml
          setup-python-dependencies: false
      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+        uses: github/codeql-action/analyze@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
        with:
          category: "/language:${{matrix.language}}"
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@ -25,6 +25,6 @@ jobs:
          results_format: sarif
          publish_results: true
      - name: "Upload SARIF results to code scanning"
-        uses: github/codeql-action/upload-sarif@ea9e4e37992a54ee68a9622e985e60c8e8f12d9f # v3.27.4
+        uses: github/codeql-action/upload-sarif@f09c1c0a94de965c15400f5634aa42fac8fb8f88 # v3.27.5
        with:
          sarif_file: results.sarif