Merge pull request #131 from wneessen/dependabot/github_actions/github/codeql-action-3.25.6

Bump github/codeql-action from 3.25.5 to 3.25.6
Merge pull request #132 from wneessen/dependabot/github_actions/codecov/codecov-action-4.4.1
2024-10-06 02:25:56 +02:00 · 2024-05-20 23:49:25 +02:00 · 2024-05-20 23:49:06 +02:00 · 2024-05-20 19:30:47 +00:00 · 2024-05-20 19:30:38 +00:00
3 changed files with 4 additions and 4 deletions
--- a/.github/workflows/codecov.yml
+++ b/.github/workflows/codecov.yml
@ -40,6 +40,6 @@ jobs:
        go test -v -race --coverprofile=coverage.coverprofile --covermode=atomic ./...
    - name: Upload coverage to Codecov
      if: success() && matrix.go == '1.22' && matrix.os == 'ubuntu-latest'
-      uses: codecov/codecov-action@6d798873df2b1b8e5846dba6fb86631229fbcb17 # v4.4.0
+      uses: codecov/codecov-action@125fc84a9a348dbcf27191600683ec096ec9021c # v4.4.1
      with:
        token: ${{ secrets.CODECOV_TOKEN }} # not required for public repos
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -59,7 +59,7 @@ jobs:
    # Initializes the CodeQL tools for scanning.
    - name: Initialize CodeQL
-      uses: github/codeql-action/init@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # v3.25.5
+      uses: github/codeql-action/init@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
      with:
        languages: ${{ matrix.language }}
        # If you wish to specify custom queries, you can do so here or in a config file.
@ -86,6 +86,6 @@ jobs:
        /usr/bin/env GOTOOLCHAIN=go1.22.1+auto go build -a -installsuffix cgo -ldflags '-w -s -extldflags "-static"' -o apg github.com/wneessen/apg-go/cmd/apg
    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # v3.25.5
+      uses: github/codeql-action/analyze@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
      with:
        category: "/language:${{matrix.language}}"
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@ -71,6 +71,6 @@ jobs:
      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b7cec7526559c32f1616476ff32d17ba4c59b2d6 # v3.25.5
+        uses: github/codeql-action/upload-sarif@9fdb3e49720b44c48891d036bb502feb25684276 # v3.25.6
        with:
          sarif_file: results.sarif
Author	SHA1	Message	Date
Winni Neessen	927fc789a3	Merge pull request #131 from wneessen/dependabot/github_actions/github/codeql-action-3.25.6 Bump github/codeql-action from 3.25.5 to 3.25.6	2024-05-20 23:49:25 +02:00
Winni Neessen	ae4164b2d6	Merge pull request #132 from wneessen/dependabot/github_actions/codecov/codecov-action-4.4.1 Bump codecov/codecov-action from 4.4.0 to 4.4.1	2024-05-20 23:49:06 +02:00
dependabot[bot]	e1aeecf708	--- updated-dependencies: - dependency-name: codecov/codecov-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-20 19:30:47 +00:00
dependabot[bot]	fef76f80e1	--- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-05-20 19:30:38 +00:00