diff --git a/.github/workflows/default_pull_request_callable.yml b/.github/workflows/default_pull_request_callable.yml index 41a5970..22cc3be 100644 --- a/.github/workflows/default_pull_request_callable.yml +++ b/.github/workflows/default_pull_request_callable.yml @@ -21,7 +21,7 @@ jobs: name: Validate PR title runs-on: ubuntu-latest steps: - - uses: actions/create-github-app-token@5d869da34e18e7287c1daad50e0b8ea0f506ce69 # v1.11.0 + - uses: actions/create-github-app-token@c1a285145b9d317df6ced56c09f525b5c2b6f755 # v1.11.1 id: app-token with: app-id: ${{ vars.GET_TOKEN_APP_ID }} diff --git a/.github/workflows/docker_dockerhub_release_callable.yml b/.github/workflows/docker_dockerhub_release_callable.yml index 22facdb..2a81b38 100644 --- a/.github/workflows/docker_dockerhub_release_callable.yml +++ b/.github/workflows/docker_dockerhub_release_callable.yml @@ -74,7 +74,7 @@ jobs: format: "sarif" output: "trivy-results.sarif" - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9 + uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0 if: ${{ inputs.upload-security-scan-results }} with: sarif_file: "trivy-results.sarif" diff --git a/.github/workflows/terraform_module_terraform_tfsec_callable.yml b/.github/workflows/terraform_module_terraform_tfsec_callable.yml index d8bf02d..77b456b 100644 --- a/.github/workflows/terraform_module_terraform_tfsec_callable.yml +++ b/.github/workflows/terraform_module_terraform_tfsec_callable.yml @@ -32,7 +32,7 @@ jobs: sarif_file: tfsec.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@df409f7d9260372bd5f19e5b04e83cb3c43714ae # v3.27.9 + uses: github/codeql-action/upload-sarif@48ab28a6f5dbc2a99bf1e0131198dd8f1df78169 # v3.28.0 with: # Path to SARIF file relative to the root of the repository sarif_file: tfsec.sarif