This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-weaver.git
The following commit(s) were added to refs/heads/master by this push:
new 5543070 Bump github/codeql-action from 4.31.4 to 4.31.5
5543070 is described below
commit 5543070935d11dcd41e89b5d454e4d723114a9c1
Author: Gary Gregory <[email protected]>
AuthorDate: Fri Nov 28 21:46:18 2025 +0000
Bump github/codeql-action from 4.31.4 to 4.31.5
---
.github/workflows/codeql-analysis.yml | 2 +-
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index d898df3..5c48eba 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -88,4 +88,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@e12f0178983d466f2f6028f5cc7a6d786fd97f4b # 4.31.4
+ uses:
github/codeql-action/analyze@fdbfb4d2750291e159f0156def62b853c2798ca2 # 4.31.5
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 4270678..a5607a5 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -64,6 +64,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
- uses:
github/codeql-action/upload-sarif@e12f0178983d466f2f6028f5cc7a6d786fd97f4b #
4.31.4
+ uses:
github/codeql-action/upload-sarif@fdbfb4d2750291e159f0156def62b853c2798ca2 #
4.31.5
with:
sarif_file: results.sarif
