Merge pull request #77 from valitydev/renovate/github-codeql-action-3.x

St-Ilya · web-flow · commit 2a33f9022a5e · 2024-11-15T13:33:04.000+03:00
Update github/codeql-action action
diff --git a/.github/workflows/maven-service-build.yml b/.github/workflows/maven-service-build.yml
@@ -71,6 +71,6 @@ jobs:
         run: trivy sbom --severity CRITICAL,HIGH --format sarif -o trivy-report.sarif ./bom.json
 
       - name: Upload SARIF report
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: trivy-report.sarif
diff --git a/.github/workflows/semgrep-scan.yml b/.github/workflows/semgrep-scan.yml
@@ -26,7 +26,7 @@ jobs:
           path: semgrep.sarif
 
       - name: Scanning alerts
-        uses: github/codeql-action/upload-sarif@v3.25.7
+        uses: github/codeql-action/upload-sarif@v3.27.4
         with:
           sarif_file: semgrep.sarif
           category: semgrep
