build(deps): bump github/codeql-action from 2 to 3 (#109)

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Author: dependabot[bot]

.github/workflows/checkov.yml

@@ -55,7 +55,7 @@ jobs:
           var_file: ${{ inputs.var_file}}
 
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         # Results are generated only on a success or failure
         # This is required since GitHub by default won't run the next step
         # when the previous one has failed. Security checks that do not pass will 'fail'

.github/workflows/docker-scanner.yml

@@ -44,7 +44,7 @@ jobs:
           output: 'trivy-results.sarif'
 
       - name: Upload Trivy scan results to GitHub Security tab
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           sarif_file: 'trivy-results.sarif'
 

.github/workflows/tfsec.yml

@@ -30,7 +30,7 @@ jobs:
           full_repo_scan: true
 
       - name: Upload SARIF file
-        uses: github/codeql-action/upload-sarif@v2
+        uses: github/codeql-action/upload-sarif@v3
         with:
           # Path to SARIF file relative to the root of the repository
           sarif_file: tfsec.sarif