build(deps): bump github/codeql-action from 2 to 3 (#109)

Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
clouddrove · Jan 5, 2024 · 2ed2745 · 2ed2745
1 parent df2ecaa
commit 2ed2745
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 3 deletions.
diff --git a/.github/workflows/checkov.yml b/.github/workflows/checkov.yml
@@ -55,7 +55,7 @@ jobs:
           var_file: ${{ inputs.var_file}}
 
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         # Results are generated only on a success or failure
         # This is required since GitHub by default won't run the next step
         # when the previous one has failed. Security checks that do not pass will 'fail'

diff --git a/.github/workflows/docker-scanner.yml b/.github/workflows/docker-scanner.yml
@@ -44,7 +44,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 

diff --git a/.github/workflows/tfsec.yml b/.github/workflows/tfsec.yml
@@ -30,7 +30,7 @@ jobs:
           full_repo_scan: true
 
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           # Path to SARIF file relative to the root of the repository
           sarif_file: tfsec.sarif