@@ -64,12 +64,12 @@ jobs:
6464
6565 steps :
6666 - name : Harden the runner (Audit all outbound calls)
67- uses : step-security/harden-runner@002fdce3c6a235733a90a27c80493a3241e56863 # v2.12.1
67+ uses : step-security/harden-runner@ec9f2d5744a09debf3a187a3f4f675c53b671911 # v2.13.0
6868 with :
6969 egress-policy : audit
7070
7171 - name : Checkout repository
72- uses : actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
72+ uses : actions/checkout@08c6903cd8c0fde910a37f88322edcfb5dd907a8 # v5.0.0
7373 # Add any setup steps before running the `github/codeql-action/init` action.
7474 # This includes steps like installing compilers or runtimes (`actions/setup-node`
7575 # or others). This is typically only required for manual builds.
7878
7979 # Initializes the CodeQL tools for scanning.
8080 - name : Initialize CodeQL
81- uses : github/codeql-action/init@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
81+ uses : github/codeql-action/init@3c3833e0f8c1c83d449a7478aa59c036a9165498 # v3.29.11
8282 with :
8383 languages : ${{ matrix.language }}
8484 build-mode : ${{ matrix.build-mode }}
9292 # Autobuild attempts to build any compiled languages (C/C++, C#, or Java).
9393 # If this step fails, then you should remove it and run the build manually (see below)
9494 - name : Autobuild
95- uses : github/codeql-action/autobuild@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
95+ uses : github/codeql-action/autobuild@3c3833e0f8c1c83d449a7478aa59c036a9165498 # v3.29.11
9696 # If the Autobuild fails above, remove it and uncomment the following three lines.
9797 # modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.
9898
@@ -120,6 +120,6 @@ jobs:
120120
121121 - name: Perform CodeQL Analysis
122122 - name : Perform CodeQL Analysis
123- uses : github/codeql-action/analyze@ce28f5bb42b7a9f2c824e633a3f6ee835bab6858 # v3.29.0
123+ uses : github/codeql-action/analyze@3c3833e0f8c1c83d449a7478aa59c036a9165498 # v3.29.11
124124 with :
125125 category : " /language:${{matrix.language}}"
0 commit comments