Bump github/codeql-action from 3.28.1 to 3.28.5

dependabot[bot] · Commit Queue · commit 38097ab83e4f · 2025-01-29T02:09:08.000-08:00
Closes #59985 GitOrigin-RevId: 13cbab8 Change-Id: Iea7c3a7ac173542d785fc353708f0609a65a7728 Reviewed-on: https://dart-review.googlesource.com/c/sdk/+/405940 Reviewed-by: Alexander Thomas <athom@google.com> Commit-Queue: Alexander Thomas <athom@google.com>
diff --git a/.github/workflows/scorecards-analysis.yml b/.github/workflows/scorecards-analysis.yml
@@ -52,6 +52,6 @@ jobs:
 
       # Upload the results to GitHub's code scanning dashboard.
       - name: "Upload to code-scanning"
-        uses: github/codeql-action/upload-sarif@b6a472f63d85b9c78a3ac5e89422239fc15e9b3c
+        uses: github/codeql-action/upload-sarif@f6091c0113d1dcf9b98e269ee48e8a7e51b7bdd4
         with:
           sarif_file: results.sarif
