build(deps): bump the prod-github-actions group across 1 directory with 2 updates (#20)

Bumps the prod-github-actions group with 2 updates in the / directory: [github/codeql-action](https://github.com/github/codeql-action) and [MobSF/mobsfscan](https://github.com/mobsf/mobsfscan).


Updates `github/codeql-action` from 3.27.0 to 3.27.5
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](github/codeql-action@v3.27.0...v3.27.5)

Updates `MobSF/mobsfscan` from 0.3.9 to 0.4.5
- [Release notes](https://github.com/mobsf/mobsfscan/releases)
- [Commits](MobSF/mobsfscan@849b749...3d87bc5)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-github-actions
- dependency-name: MobSF/mobsfscan
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: prod-github-actions
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Author: dependabot[bot]

.github/workflows/codeql-package.yml

@@ -84,7 +84,7 @@ jobs:
 
       # Initialize CodeQL.
       - name: Initialize CodeQL
-        uses: github/codeql-action/[email protected].0
+        uses: github/codeql-action/[email protected].5
         with:
           languages: ${{ matrix.language }}
           build-mode: ${{ matrix.build-mode }}
@@ -114,7 +114,7 @@ jobs:
 
       # Perform CodeQL analysis after the build has completed successfully or failed.
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/[email protected].0
+        uses: github/codeql-action/[email protected].5
         if: success() || failure()
         with:
           category: "/language:${{matrix.language}}"

.github/workflows/codeql-samples-quickstart.yml

@@ -86,7 +86,7 @@ jobs:
 
       # Initialize CodeQL.
       - name: Initialize CodeQL
-        uses: github/codeql-action/[email protected].0
+        uses: github/codeql-action/[email protected].5
         with:
           languages: ${{ matrix.language }}
           build-mode: ${{ matrix.build-mode }}
@@ -117,7 +117,7 @@ jobs:
 
       # Perform CodeQL Analysis if the build succeeded or failed.
       - name: Perform CodeQL Analysis
-        uses: github/codeql-action/[email protected].0
+        uses: github/codeql-action/[email protected].5
         if: success() || failure()
         with:
           category: "/language:${{matrix.language}}"

.github/workflows/mobsf.yml

@@ -42,13 +42,13 @@ jobs:
 
       # Performs analysis using MobSF and outputs a Sarif Report
       - name: Run mobsfscan
-        uses: MobSF/mobsfscan@849b749e7f3244c7b4f418ff858a9fa4e1406115
+        uses: MobSF/mobsfscan@3d87bc570c4614d705547bddb521395663dba353
         with:
           args: . --sarif --output mobsf.sarif.json || true
 
       # Uploads Sarif Report to GitHub
       - name: Upload mobsfscan report
-        uses: github/codeql-action/[email protected].0
+        uses: github/codeql-action/[email protected].5
         if: success() || failure()
         with:
           sarif_file: mobsf.sarif.json

.github/workflows/swiftlint.yml

@@ -43,7 +43,7 @@ jobs:
 
       # Uploads Sarif Report for the app to GitHub
       - name: Upload Swift app report
-        uses: github/codeql-action/[email protected].0
+        uses: github/codeql-action/[email protected].5
         if: success() || failure()
         with:
           sarif_file: lint-results-debug.sarif