Merge pull request #2716 from nextcloud/dependabot/github_actions/github/codeql-action-2.1.39

Build(deps): Bump github/codeql-action from 2.1.38 to 2.1.39
2025-03-06 14:27:24 +00:00 · 2023-01-24 09:13:08 +01:00 · 2023-01-24 09:13:08 +01:00 · 6ca8acf758
commit 6ca8acf758
parent eca47b8bc7 8a26eb391e
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -32,7 +32,7 @@ jobs:
        with:
          swap-size-gb: 10
      - name: Initialize CodeQL
-        uses: github/codeql-action/init@515828d97454b8354517688ddc5b48402b723750 # v2.1.38
+        uses: github/codeql-action/init@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v2.1.39
        with:
          languages: ${{ matrix.language }}
      - name: Set up JDK
@ -46,4 +46,4 @@ jobs:
          echo "org.gradle.jvmargs=-Xmx2g -XX:MaxMetaspaceSize=512m -XX:+HeapDumpOnOutOfMemoryError" > "$HOME/.gradle/gradle.properties"
          ./gradlew assembleDebug
      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@515828d97454b8354517688ddc5b48402b723750 # v2.1.38
+        uses: github/codeql-action/analyze@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v2.1.39
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@ -50,6 +50,6 @@ jobs:

      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@27ea8f8fe5977c00f5b37e076ab846c5bd783b96 # v1.0.26
+        uses: github/codeql-action/upload-sarif@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v1.0.26
        with:
          sarif_file: results.sarif