Merge pull request #18935 from Homebrew/codeql-action-fixes

workflows: fix mis-pinned codeql-action hashes
2024-12-14 13:00:59 +00:00 · 2024-12-14 13:00:59 +00:00 · a86c7c1d7a
commit a86c7c1d7a
parent ccb463b31b 4d52f24886
2 changed files with 3 additions and 3 deletions
--- a/.github/workflows/actionlint.yml
+++ b/.github/workflows/actionlint.yml
@ -78,7 +78,7 @@ jobs:
          path: results.sarif

      - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@86b04fb0e47484f7282357688f21d5d0e32175fe # v3.27.9
+        uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
        with:
          sarif_file: results.sarif
          category: zizmor
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@ -28,7 +28,7 @@ jobs:
          persist-credentials: false

      - name: Initialize CodeQL
-        uses: github/codeql-action/init@662472033e021d55d94146f66f6058822b0b39fd # v3.27.9
+        uses: github/codeql-action/init@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9
        with:
          languages: ruby
          config: |
@ -36,4 +36,4 @@ jobs:
              - Library/Homebrew/vendor

      - name: Perform CodeQL Analysis
-        uses: github/codeql-action/analyze@662472033e021d55d94146f66f6058822b0b39fd # v3.27.9
+        uses: github/codeql-action/analyze@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9