This is an automated email from the ASF dual-hosted git repository.
rusackas pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/superset.git
The following commit(s) were added to refs/heads/master by this push:
new 5ab8583cd0d chore(gha): pin github/codeql-action to a SHA (#40043)
5ab8583cd0d is described below
commit 5ab8583cd0dca5692f76b3a11299b2a43ba6b512
Author: Evan Rusackas <[email protected]>
AuthorDate: Mon May 11 20:18:55 2026 -0700
chore(gha): pin github/codeql-action to a SHA (#40043)
Co-authored-by: Superset Dev <[email protected]>
Co-authored-by: Claude Opus 4.7 <[email protected]>
---
.github/workflows/codeql-analysis.yml | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/.github/workflows/codeql-analysis.yml
b/.github/workflows/codeql-analysis.yml
index 5ae6ebd2c02..c37f04e5173 100644
--- a/.github/workflows/codeql-analysis.yml
+++ b/.github/workflows/codeql-analysis.yml
@@ -41,7 +41,7 @@ jobs:
# Initializes the CodeQL tools for scanning.
- name: Initialize CodeQL
- uses: github/codeql-action/init@v4
+ uses:
github/codeql-action/init@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4
with:
languages: ${{ matrix.language }}
# If you wish to specify custom queries, you can do so here or in a
config file.
@@ -53,6 +53,6 @@ jobs:
- name: Perform CodeQL Analysis
if: steps.check.outputs.python || steps.check.outputs.frontend
- uses: github/codeql-action/analyze@v4
+ uses:
github/codeql-action/analyze@68bde559dea0fdcac2102bfdf6230c5f70eb485e # v4
with:
category: "/language:${{matrix.language}}"
