build(deps): bump github/codeql-action from 2.1.6 to 2.1.8 (#5316)

83021637 · dependabot[bot] · GitHub · 1e4adf30 · 83021637 · 83021637
Commit 83021637 authored Apr 11, 2022 by dependabot[bot] Committed by GitHub Apr 11, 2022
Show whitespace changes
Inline Side-by-side

Showing with 4 additions and 4 deletions

.github/workflows/codeql-analysis.yml .github/workflows/codeql-analysis.yml +3 -3

.github/workflows/scorecards.yml .github/workflows/scorecards.yml +1 -1

No files found.
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -30,12 +30,12 @@ jobs:
        uses: actions/checkout@a12a3943b4bdde767164f792f33f40b04645d846
      - name: Initialize CodeQL
-        uses: github/codeql-action/init@28eead240834b314f7def40f6fcba65d100d99b1
+        uses: github/codeql-action/init@1ed1437484560351c5be56cf73a48a279d116b78
        with:
          languages: ${{ matrix.language }}
      - name: Autobuild
-        uses: github/codeql-action/autobuild@28eead240834b314f7def40f6fcba65d100d99b1
+        uses: github/codeql-action/autobuild@1ed1437484560351c5be56cf73a48a279d116b78
      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@28eead240834b314f7def40f6fcba65d100d99b1
+        uses: github/codeql-action/analyze@1ed1437484560351c5be56cf73a48a279d116b78
--- a/.github/workflows/scorecards.yml
+++ b/.github/workflows/scorecards.yml
@@ -50,6 +50,6 @@ jobs:
      # Upload the results to GitHub's code scanning dashboard.
      - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@28eead240834b314f7def40f6fcba65d100d99b1
+        uses: github/codeql-action/upload-sarif@1ed1437484560351c5be56cf73a48a279d116b78
        with:
          sarif_file: results.sarif