Mercurial > p > roundup > code
changeset 8341:85198b53b999
chore: update githup action ses clauses to latest versions.
| author | John Rouillard <rouilj@ieee.org> |
|---|---|
| date | Thu, 19 Jun 2025 16:38:38 -0400 |
| parents | 6e44b3b20df2 |
| children | b38327f15450 |
| files | .github/workflows/ossf-scorecard.yml |
| diffstat | 1 files changed, 4 insertions(+), 4 deletions(-) [+] |
line wrap: on
line diff
--- a/.github/workflows/ossf-scorecard.yml Thu Jun 19 16:25:18 2025 -0400 +++ b/.github/workflows/ossf-scorecard.yml Thu Jun 19 16:38:38 2025 -0400 @@ -35,12 +35,12 @@ steps: - name: "Checkout code" - uses: actions/checkout@b4ffde65f46336ab88eb53be808477a3936bae11 # v4.1.1 + uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2 with: persist-credentials: false - name: "Run analysis" - uses: ossf/scorecard-action@0864cf19026789058feabb7e87baa5f140aac736 # v2.3.10 + uses: ossf/scorecard-action@05b42c624433fc40578a4040d5cf5e36ddca8cde # v5.2.1 with: results_file: results.sarif results_format: sarif @@ -62,7 +62,7 @@ # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: "Upload artifact" - uses: actions/upload-artifact@26f96dfa697d77e81fd5907df203aa23a56210a8 # v4.3.0 + uses: actions/upload-artifact@ea165f8d65b6e75b540449e92b4886f43607fa02 # v4.6.2 with: name: SARIF file path: results.sarif @@ -70,6 +70,6 @@ # Upload the results to GitHub's code scanning dashboard. - name: "Upload to code-scanning" - uses: github/codeql-action/upload-sarif@65c74964a9ed8c44ed9f19d4bbc5757a6a8e9ab9 # v2.16.1 + uses: github/codeql-action/upload-sarif@b1e4dc3db58c9601794e22a9f6d28d45461b9dbf # v2.22.0 with: sarif_file: results.sarif