Merge pull request #393 from ZeroGachis/renovate/github-codeql-action-4.x

rodo · web-flow · commit dfbd91c405f9 · 2025-11-18T16:54:04.000+01:00
chore(deps): update github/codeql-action action to v4
diff --git a/.github/workflows/build-image.yml b/.github/workflows/build-image.yml
@@ -307,7 +307,7 @@ jobs:
 
       - name: Upload Trivy Sarif result
         if: inputs.security_scan_enabled && inputs.security_scan_output_format == 'sarif'
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           # Path to SARIF file relative to the root of the repository
           sarif_file: "trivy-results-${{ inputs.image_name }}-edited.sarif"
diff --git a/.github/workflows/security_scan_repo.yml b/.github/workflows/security_scan_repo.yml
@@ -55,11 +55,11 @@ jobs:
           comment-tag: "The security scan result of the repo"
 
       - name: Upload security scan report FS
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: "trivy-results-fs-edited.sarif"
 
       - name: Upload security scan report Config
-        uses: github/codeql-action/upload-sarif@v3
+        uses: github/codeql-action/upload-sarif@v4
         with:
           sarif_file: "trivy-results-config-edited.sarif"
