diff --git a/.github/workflows/analysis-and-scans.yml b/.github/workflows/analysis-and-scans.yml index 37986196..9c3f2021 100644 --- a/.github/workflows/analysis-and-scans.yml +++ b/.github/workflows/analysis-and-scans.yml @@ -19,13 +19,13 @@ jobs: uses: actions/checkout@f43a0e5ff2bd294095638e18286ca9a3d1956744 # v3 - name: Initialize - uses: github/codeql-action/init@d958b976dc5b990f802df244f2dc5d807113327f # v2 + uses: github/codeql-action/init@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3 - name: Autobuild - uses: github/codeql-action/autobuild@d958b976dc5b990f802df244f2dc5d807113327f # v2 + uses: github/codeql-action/autobuild@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3 - name: Perform analysis and upload results - uses: github/codeql-action/analyze@d958b976dc5b990f802df244f2dc5d807113327f # v2 + uses: github/codeql-action/analyze@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3 njsscan: name: NJS Scan @@ -41,7 +41,7 @@ jobs: args: '. --sarif --output results.sarif || true' - name: Upload results - uses: github/codeql-action/upload-sarif@d958b976dc5b990f802df244f2dc5d807113327f # v2 + uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3 with: sarif_file: results.sarif @@ -58,6 +58,6 @@ jobs: id: analysis - name: Upload results - uses: github/codeql-action/upload-sarif@d958b976dc5b990f802df244f2dc5d807113327f # v2 + uses: github/codeql-action/upload-sarif@4fa2a7953630fd2f3fb380f21be14ede0169dd4f # v3 with: sarif_file: ${{ steps.analysis.outputs.sarifFile }}