This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-weaver.git
The following commit(s) were added to refs/heads/master by this push:
new cbebf0a Bump github/codeql-action from 4.31.6 to 4.31.7
cbebf0a is described below
commit cbebf0ae65ba694664732e49cb7a61fa9c75d492
Author: Gary Gregory <[email protected]>
AuthorDate: Fri Dec 5 15:06:23 2025 -0500
Bump github/codeql-action from 4.31.6 to 4.31.7
---
.github/workflows/codeql-analysis.yml | 4 ++--
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 1f9ba2e..e849425 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -58,7 +58,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@fe4161a26a8629af62121b670040955b330f9af2
# v4.31.6
+ uses: github/codeql-action/init@cf1bb45a277cb3c205638b2cd5c984db1c46a412
# v4.31.7
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -88,4 +88,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@fe4161a26a8629af62121b670040955b330f9af2 # v4.31.6
+ uses:
github/codeql-action/analyze@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v4.31.7
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index bcb94cd..cefcc23 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
- uses:
github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 #
v4.31.6
+ uses:
github/codeql-action/upload-sarif@cf1bb45a277cb3c205638b2cd5c984db1c46a412 #
v4.31.7
with:
sarif_file: results.sarif
