Merge pull request #620 from CycloneDX/dependabot/github_actions/github/codeql-action-3.28.12

nscuro · web-flow · commit 0cc9cfbe8c4d · 2025-03-20T11:42:32.000+01:00
Bump github/codeql-action from 3.28.11 to 3.28.12
diff --git a/.github/workflows/codeql-analysis.yml b/.github/workflows/codeql-analysis.yml
@@ -31,10 +31,10 @@ jobs:
       if: ${{ github.event_name == 'pull_request' }}
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@6bb031afdd8eb862ea3fc1848194185e076637e5 # tag=v3.28.11
+      uses: github/codeql-action/init@5f8171a638ada777af81d42b55959a643bb29017 # tag=v3.28.12
       with:
         languages: java
     - name: Autobuild
-      uses: github/codeql-action/autobuild@6bb031afdd8eb862ea3fc1848194185e076637e5 # tag=v3.28.11
+      uses: github/codeql-action/autobuild@5f8171a638ada777af81d42b55959a643bb29017 # tag=v3.28.12
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@6bb031afdd8eb862ea3fc1848194185e076637e5 # tag=v3.28.11
+      uses: github/codeql-action/analyze@5f8171a638ada777af81d42b55959a643bb29017 # tag=v3.28.12
