This is an automated email from the ASF dual-hosted git repository.
ggregory pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/commons-crypto.git
The following commit(s) were added to refs/heads/master by this push:
new 90fe5444 Bump github/codeql-action from 4.31.8 to 4.31.9
90fe5444 is described below
commit 90fe54444f4cd906ced258bb2c68d93d570fd4a4
Author: Gary Gregory <[email protected]>
AuthorDate: Wed Dec 17 07:50:38 2025 -0500
Bump github/codeql-action from 4.31.8 to 4.31.9
---
.github/workflows/codeql-analysis.yml | 4 ++--
.github/workflows/scorecards-analysis.yml | 2 +-
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index a7ea6f16..659739a7 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -76,7 +76,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@1b168cd39490f61582a9beae412bb7057a6b2c4e
# v4.31.8
+ uses: github/codeql-action/init@5d4e8d1aca955e8d8589aabd499c5cae939e33c7
# v4.31.9
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -91,4 +91,4 @@ jobs:
# make release
- name: Perform CodeQL Analysis
- uses:
github/codeql-action/analyze@1b168cd39490f61582a9beae412bb7057a6b2c4e # v4.31.8
+ uses:
github/codeql-action/analyze@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 # v4.31.9
diff --git a/.github/workflows/scorecards-analysis.yml
b/.github/workflows/scorecards-analysis.yml
index 3a1cabee..829dd11a 100644
--- a/.github/workflows/scorecards-analysis.yml
+++ b/.github/workflows/scorecards-analysis.yml
@@ -67,6 +67,6 @@ jobs:
retention-days: 5
- name: "Upload to code-scanning"
- uses:
github/codeql-action/upload-sarif@1b168cd39490f61582a9beae412bb7057a6b2c4e #
v4.31.8
+ uses:
github/codeql-action/upload-sarif@5d4e8d1aca955e8d8589aabd499c5cae939e33c7 #
v4.31.9
with:
sarif_file: results.sarif
