This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-crypto.git
The following commit(s) were added to refs/heads/master by this push:
new fbc73afb Bump github/codeql-action from 4.31.6 to 4.31.7
fbc73afb is described below
commit fbc73afb448e46245210e3b16ba1054742eb5c1a
Author: Gary Gregory <[email protected]>
AuthorDate: Fri Dec 5 15:06:16 2025 -0500
Bump github/codeql-action from 4.31.6 to 4.31.7
---
.github/workflows/codeql-analysis.yml | 4 ++--
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 60c9e00b..a642cda9 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -76,7 +76,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@fe4161a26a8629af62121b670040955b330f9af2
# v4.31.6
+ uses: github/codeql-action/init@cf1bb45a277cb3c205638b2cd5c984db1c46a412
# v4.31.7
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -91,4 +91,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@fe4161a26a8629af62121b670040955b330f9af2 # v4.31.6
+ uses:
github/codeql-action/analyze@cf1bb45a277cb3c205638b2cd5c984db1c46a412 # v4.31.7
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index d8bcf55c..b1b60712 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -67,6 +67,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
- uses:
github/codeql-action/upload-sarif@fe4161a26a8629af62121b670040955b330f9af2 #
v4.31.6
+ uses:
github/codeql-action/upload-sarif@cf1bb45a277cb3c205638b2cd5c984db1c46a412 #
v4.31.7
with:
sarif_file: results.sarif
