diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index ca6123f1..770c6bae 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -1,4 +1,4 @@ -name: "CodeQL SAST" +name: "CodeQL SAST" on: push: @@ -27,13 +27,13 @@ jobs: uses: actions/checkout@v4 - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: ${{ matrix.language }} queries: security-extended,security-and-quality - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 continue-on-error: true with: category: "/language:${{matrix.language}}" diff --git a/.github/workflows/container-scan.yml b/.github/workflows/container-scan.yml index a63ded26..38bbd112 100644 --- a/.github/workflows/container-scan.yml +++ b/.github/workflows/container-scan.yml @@ -1,4 +1,4 @@ -name: Container Vulnerability Scan +name: Container Vulnerability Scan on: push: @@ -29,7 +29,7 @@ jobs: - name: Upload Trivy scan results to GitHub Security tab if: hashFiles('Dockerfile') != '' - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 with: sarif_file: 'trivy-results.sarif' continue-on-error: true diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 8e05d656..f6670133 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -42,6 +42,6 @@ jobs: publish_results: false - name: Upload Scorecard SARIF - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 with: sarif_file: results.sarif diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml index e4d0261f..1106fdf4 100644 --- a/.github/workflows/security.yml +++ b/.github/workflows/security.yml @@ -71,7 +71,7 @@ jobs: shell: bash - name: Upload SARIF Reports to GitHub Advanced Security - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 with: sarif_file: . continue-on-error: true