Merge pull request #2739 from nextcloud/dependabot/github_actions/github/codeql-action-2.2.2

Build(deps): Bump github/codeql-action from 2.2.1 to 2.2.2
2025-02-01 20:22:03 +00:00 · 2023-02-07 09:00:55 +01:00 · 2023-02-07 09:00:55 +01:00 · 9d438a3cbe
commit 9d438a3cbe
parent b0402e0ef6 0483d1c98e
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -32,7 +32,7 @@ jobs:
        with:
          swap-size-gb: 10
      - name: Initialize CodeQL
-        uses: github/codeql-action/init@3ebbd71c74ef574dbc558c82f70e52732c8b44fe # v2.2.1
+        uses: github/codeql-action/init@39d8d7e78f59cf6b40ac3b9fbebef0c753d7c9e5 # v2.2.2
        with:
          languages: ${{ matrix.language }}
      - name: Set up JDK
@ -46,4 +46,4 @@ jobs:
          echo "org.gradle.jvmargs=-Xmx2g -XX:MaxMetaspaceSize=512m -XX:+HeapDumpOnOutOfMemoryError" > "$HOME/.gradle/gradle.properties"
          ./gradlew assembleDebug
      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@3ebbd71c74ef574dbc558c82f70e52732c8b44fe # v2.2.1
+        uses: github/codeql-action/analyze@39d8d7e78f59cf6b40ac3b9fbebef0c753d7c9e5 # v2.2.2
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@ -50,6 +50,6 @@ jobs:

      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@a34ca99b4610d924e04c68db79e503e1f79f9f02 # v1.0.26
+        uses: github/codeql-action/upload-sarif@39d8d7e78f59cf6b40ac3b9fbebef0c753d7c9e5 # v1.0.26
        with:
          sarif_file: results.sarif