This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-crypto.git
The following commit(s) were added to refs/heads/master by this push:
new 05ccb083 Bump CodeQL 4.31.4
05ccb083 is described below
commit 05ccb083187491aa8cc8533760b42853f8d838df
Author: Gary Gregory <[email protected]>
AuthorDate: Fri Nov 21 14:40:03 2025 +0000
Bump CodeQL 4.31.4
---
.github/workflows/codeql-analysis.yml | 4 ++--
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index c65ca50e..2e19b05b 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -76,7 +76,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@014f16e7ab1402f30e7c3329d33797e7948572db
# 3.29.5
+ uses: github/codeql-action/init@e12f0178983d466f2f6028f5cc7a6d786fd97f4b
# 4.31.4
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -91,4 +91,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@014f16e7ab1402f30e7c3329d33797e7948572db #
3.29.5
+ uses:
github/codeql-action/analyze@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # 4.31.4
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index bd797679..a15d86cd 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -67,6 +67,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
- uses:
github/codeql-action/upload-sarif@014f16e7ab1402f30e7c3329d33797e7948572db #
3.29.5
+ uses:
github/codeql-action/upload-sarif@e12f0178983d466f2f6028f5cc7a6d786fd97f4b #
4.31.4
with:
sarif_file: results.sarif
