From a0209963e30b512f7adcc34e60c8386b98803419 Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 12 Nov 2024 23:09:19 +0100 Subject: [PATCH] ci(deps): update github/codeql-action action to v3.27.3 (#132) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [github/codeql-action](https://redirect.github.com/github/codeql-action) | action | patch | `v3.27.2` -> `v3.27.3` | --- ### Release Notes
github/codeql-action (github/codeql-action) ### [`v3.27.3`](https://redirect.github.com/github/codeql-action/releases/tag/v3.27.3) [Compare Source](https://redirect.github.com/github/codeql-action/compare/v3.27.2...v3.27.3) ##### CodeQL Action Changelog See the [releases page](https://redirect.github.com/github/codeql-action/releases) for the relevant changes to the CodeQL CLI and language packs. Note that the only difference between `v2` and `v3` of the CodeQL Action is the node version they support, with `v3` running on node 20 while we continue to release `v2` to support running on node 16. For example `3.22.11` was the first `v3` release and is functionally identical to `2.22.11`. This approach ensures an easy way to track exactly which features are included in different versions, indicated by the minor and patch version numbers. ##### 3.27.3 - 12 Nov 2024 No user facing changes. See the full [CHANGELOG.md](https://redirect.github.com/github/codeql-action/blob/v3.27.3/CHANGELOG.md) for more information.
--- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/Hapag-Lloyd/Workflow-Templates). Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> --- .github/workflows/docker_dockerhub_release_callable.yml | 2 +- .github/workflows/terraform_module_terraform_tfsec_callable.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/docker_dockerhub_release_callable.yml b/.github/workflows/docker_dockerhub_release_callable.yml index 4edc628..0b5bdb6 100644 --- a/.github/workflows/docker_dockerhub_release_callable.yml +++ b/.github/workflows/docker_dockerhub_release_callable.yml @@ -74,7 +74,7 @@ jobs: format: "sarif" output: "trivy-results.sarif" - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@9278e421667d5d90a2839487a482448c4ec7df4d # v3.27.2 + uses: github/codeql-action/upload-sarif@396bb3e45325a47dd9ef434068033c6d5bb0d11a # v3.27.3 if: ${{ inputs.upload-security-scan-results }} with: sarif_file: "trivy-results.sarif" diff --git a/.github/workflows/terraform_module_terraform_tfsec_callable.yml b/.github/workflows/terraform_module_terraform_tfsec_callable.yml index 753f981..71fda94 100644 --- a/.github/workflows/terraform_module_terraform_tfsec_callable.yml +++ b/.github/workflows/terraform_module_terraform_tfsec_callable.yml @@ -32,7 +32,7 @@ jobs: sarif_file: tfsec.sarif - name: Upload SARIF file - uses: github/codeql-action/upload-sarif@9278e421667d5d90a2839487a482448c4ec7df4d # v3.27.2 + uses: github/codeql-action/upload-sarif@396bb3e45325a47dd9ef434068033c6d5bb0d11a # v3.27.3 with: # Path to SARIF file relative to the root of the repository sarif_file: tfsec.sarif