Merge pull request #195 from microsoft/dependabot/github_actions/github/codeql-action-4.31.0
Bump github/codeql-action from 4.30.9 to 4.31.0
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index 5ebb6dc..4892280 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -38,7 +38,7 @@
- uses: ilammy/msvc-dev-cmd@0b201ec74fa43914dc39ae48a89fd1d8cb592756 # v1.13.0
- name: Initialize CodeQL
- uses: github/codeql-action/init@16140ae1a102900babc80a33c44059580f687047 # v3.29.5
+ uses: github/codeql-action/init@4e94bd11f71e507f7f87df81788dff88d1dacbfb # v3.29.5
with:
languages: c-cpp
build-mode: manual
@@ -52,6 +52,6 @@
run: cmake --build out\build\x64-Debug
- name: Perform CodeQL Analysis
- uses: github/codeql-action/analyze@16140ae1a102900babc80a33c44059580f687047 # v3.29.5
+ uses: github/codeql-action/analyze@4e94bd11f71e507f7f87df81788dff88d1dacbfb # v3.29.5
with:
category: "/language:c-cpp"
diff --git a/.github/workflows/msvc.yml b/.github/workflows/msvc.yml
index cd7ee10..24feca1 100644
--- a/.github/workflows/msvc.yml
+++ b/.github/workflows/msvc.yml
@@ -48,6 +48,6 @@
# Upload SARIF file to GitHub Code Scanning Alerts
- name: Upload SARIF to GitHub
- uses: github/codeql-action/upload-sarif@16140ae1a102900babc80a33c44059580f687047 # v3.29.5
+ uses: github/codeql-action/upload-sarif@4e94bd11f71e507f7f87df81788dff88d1dacbfb # v3.29.5
with:
sarif_file: ${{ steps.run-analysis.outputs.sarif }}
