diff --git a/.github/workflows/security.yml b/.github/workflows/security.yml index 6944031..2d530c0 100644 --- a/.github/workflows/security.yml +++ b/.github/workflows/security.yml @@ -39,13 +39,13 @@ jobs: uv sync - name: Initialize CodeQL - uses: github/codeql-action/init@v3 + uses: github/codeql-action/init@v4 with: languages: ${{ matrix.language }} queries: +security-and-quality - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@v3 + uses: github/codeql-action/analyze@v4 with: category: "/language:${{matrix.language}}" @@ -101,7 +101,7 @@ jobs: fi - name: Upload Trivy scan results to GitHub Security tab - uses: github/codeql-action/upload-sarif@v3 + uses: github/codeql-action/upload-sarif@v4 if: steps.check_results.outputs.results_exist == 'true' with: sarif_file: 'trivy-results.sarif' \ No newline at end of file