Merge pull request #213 from wneessen/dependabot/github_actions/github/codeql-action-3.26.11

Bump github/codeql-action from 3.26.10 to 3.26.11
Merge pull request #214 from wneessen/dependabot/github_actions/docker/setup-buildx-action-3.7.1
2024-11-22 13:50:49 +01:00 · 2024-10-04 22:01:17 +02:00 · 2024-10-04 22:01:05 +02:00 · 2024-10-04 19:59:44 +00:00 · 2024-10-04 19:59:40 +00:00
3 changed files with 4 additions and 4 deletions
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@ -59,7 +59,7 @@ jobs:

    # Initializes the CodeQL tools for scanning.
    - name: Initialize CodeQL
-      uses: github/codeql-action/init@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+      uses: github/codeql-action/init@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
      with:
        languages: ${{ matrix.language }}
        # If you wish to specify custom queries, you can do so here or in a config file.
@ -86,6 +86,6 @@ jobs:
        /usr/bin/env GOTOOLCHAIN=go1.22.1+auto go build -a -installsuffix cgo -ldflags '-w -s -extldflags "-static"' -o apg github.com/wneessen/apg-go/cmd/apg

    - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+      uses: github/codeql-action/analyze@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
      with:
        category: "/language:${{matrix.language}}"
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@ -74,7 +74,7 @@ jobs:
      - name: Set up QEMU
        uses: docker/setup-qemu-action@49b3bc8e6bdd4a60e6116a5414239cba5943d3cf # v3.2.0
      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@8026d2bc3645ea78b0d2544766a1225eb5691f89 # v3.7.0
+        uses: docker/setup-buildx-action@c47758b77c9736f4b2ef4073d4d51994fabfe349 # v3.7.1
      - name: Build and push
        uses: docker/build-push-action@4f58ea79222b3b9dc2c8bbdd6debcef730109a75 # v6.9.0
        with:
--- a/.github/workflows/scorecard.yml
+++ b/.github/workflows/scorecard.yml
@ -71,6 +71,6 @@ jobs:

      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@e2b3eafc8d227b0241d48be5f425d47c2d750a13 # v3.26.10
+        uses: github/codeql-action/upload-sarif@6db8d6351fd0be61f9ed8ebd12ccd35dcec51fea # v3.26.11
        with:
          sarif_file: results.sarif
Author	SHA1	Message	Date
Winni Neessen	9548187860	Merge pull request #213 from wneessen/dependabot/github_actions/github/codeql-action-3.26.11 Bump github/codeql-action from 3.26.10 to 3.26.11	2024-10-04 22:01:17 +02:00
Winni Neessen	c1a6601cf5	Merge pull request #214 from wneessen/dependabot/github_actions/docker/setup-buildx-action-3.7.1 Bump docker/setup-buildx-action from 3.7.0 to 3.7.1	2024-10-04 22:01:05 +02:00
dependabot[bot]	996dde4f94	Bump docker/setup-buildx-action from 3.7.0 to 3.7.1 Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.7.0 to 3.7.1. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](`8026d2bc36...c47758b77c`) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-10-04 19:59:44 +00:00
dependabot[bot]	e5ab57bf61	Bump github/codeql-action from 3.26.10 to 3.26.11 Bumps [github/codeql-action](https://github.com/github/codeql-action) from 3.26.10 to 3.26.11. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](`e2b3eafc8d...6db8d6351f`) --- updated-dependencies: - dependency-name: github/codeql-action dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>	2024-10-04 19:59:40 +00:00