update codeql-action to version 3.28.1 in workflow pipelines

OWASP · Jan 16, 2025 · 7c879e3 · 7c879e3
1 parent 73bbd0c
commit 7c879e3
Show file tree

Hide file tree

Showing 3 changed files with 11 additions and 11 deletions.
diff --git a/.github/workflows/housekeeping.yaml b/.github/workflows/housekeeping.yaml
@@ -74,7 +74,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v3.27.0
+        uses: github/codeql-action/upload-sarif@v3.28.1
         with:
           sarif_file: 'trivy-results.sarif'
 
@@ -94,7 +94,7 @@ jobs:
           ref: main
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.27.0
+        uses: github/codeql-action/init@v3.28.1
         with:
           languages: 'javascript'
           config-file: ./.github/codeql/codeql-config.yml
@@ -103,10 +103,10 @@ jobs:
           # Prefix the list here with "+" to use these queries and those in the config file.
 
       - name: CodeQL autobuild
-        uses: github/codeql-action/autobuild@v3.27.0
+        uses: github/codeql-action/autobuild@v3.28.1
 
       - name: Perform vulnerability analysis
-        uses: github/codeql-action/analyze@v3.27.0
+        uses: github/codeql-action/analyze@v3.28.1
 
   link_checker:
     name: Link checker

diff --git a/.github/workflows/pull_request.yaml b/.github/workflows/pull_request.yaml
@@ -135,7 +135,7 @@ jobs:
         uses: actions/[email protected]
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.27.0
+        uses: github/codeql-action/init@v3.28.1
         with:
           languages: 'javascript'
           config-file: ./.github/codeql/codeql-config.yml
@@ -144,10 +144,10 @@ jobs:
           # Prefix the list here with "+" to use these queries and those in the config file.
 
       - name: CodeQL autobuild
-        uses: github/codeql-action/autobuild@v3.27.0
+        uses: github/codeql-action/autobuild@v3.28.1
 
       - name: Perform vulnerability analysis
-        uses: github/codeql-action/analyze@v3.27.0
+        uses: github/codeql-action/analyze@v3.28.1
 
   e2e_smokes:
     name: Local site e2e smokes

diff --git a/.github/workflows/push.yaml b/.github/workflows/push.yaml
@@ -143,7 +143,7 @@ jobs:
         uses: actions/[email protected]
 
       - name: Initialize CodeQL
-        uses: github/codeql-action/init@v3.27.0
+        uses: github/codeql-action/init@v3.28.1
         with:
           languages: 'javascript'
           config-file: ./.github/codeql/codeql-config.yml
@@ -152,10 +152,10 @@ jobs:
           # Prefix the list here with "+" to use these queries and those in the config file.
 
       - name: CodeQL autobuild
-        uses: github/codeql-action/autobuild@v3.27.0
+        uses: github/codeql-action/autobuild@v3.28.1
 
       - name: Perform vulnerability analysis
-        uses: github/codeql-action/analyze@v3.27.0
+        uses: github/codeql-action/analyze@v3.28.1
 
   build_docker_image:
     name: Build latest docker
@@ -453,7 +453,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v3.27.0
+        uses: github/codeql-action/upload-sarif@v3.28.1
         with:
           sarif_file: 'trivy-results.sarif'